Risk management framework in Agile software development methodology

In software projects that use the Agile methodology, the focus is on development in small iterations to allow both frequent changes and client involvement. This methodology affects the risks that may happen in Agile software projects. Hence, these projects need a clear risk management process to reduce risks and address the problems before they arise. Most software production methodologies must use a framework for risk management, but currently, there is no such framework for the Agile methodology. Therefore, we present a risk management framework for projects that use the Agile methodology to help the software development process and increase the likelihood of the project’s success. The proposed framework states the necessary measures for risk management according to the ISO31000 standard at each stage of the Agile methodology. We evaluated the proposed framework in two running software projects with an Agile methodology by a number of expert experts. The results show that using our proposed framework increases the average positive risk reaction score by 49%

Risk Management Software – Standpoints of Users

The paper presents results of research related to the standpoints of users about the main attributes that risk management software should have. This research was based on a survey of appropriate number of companies in Croatia and Bosnia and Herzegovina. The authors developed the questionnaire in order to investigate the standpoints of risk managers, quality managers and others in charge of risk management, about functionality they expect risk management software should support. Namely, in today\u27s global environment, managers and risk managers across all lines of business are accountable for a sustainable risk framework. Adequate software support enables them to take an innovative, risk-based approach to governance and compliance, to gain a holistic, enterprisewide view of risk exposure and near-real-time risk management and monitoring.Software support for risk management process should enable organisations with efficient risk evaluation and assessment, continuous monitoring, reporting and easier improvement of the process. Results of research show the main attributes that risk management software should have in order to fulfill user expectations. Finally, the paper provides some important guidelines and suggestions for risk management software development and improvement. This work is licensed under a&nbsp;Creative Commons Attribution-NonCommercial 4.0 International License.</p

Integrating Dynamic Models for CMM-Based Software Process Improvement

During the last decade software process simulation has been used to address a wide diversity of management problems. Some of these problems are related to strategic management, technology adoption, understanding, training and learning, and risk management, among others. In this work a dynamic integrated framework for software process improvement is presented. This framework combines traditional estimation static models with an intensive utilization of dynamic simulation models of the software process. The aim of this framework is to support a qualitative and quantitative assessment for software process improvement and decision making to achieve a higher software development process capability according to the Capability Maturity Model. The paper describes the concepts underlying this framework, its implementation, the dynamic approach followed to systematically develop the dynamic modules, and an example of its potential use and benefits.CICYT TIC2001-1143-C03-0

A Framework for Identifying and Understanding Risks in Information Technology Projects

Managing the costs, complexity, and risks of IT projects continues to be a challenge for many organizations. Project risk management is becoming an important sub-discipline of software engineering, and focuses on identifying, analyzing, and developing strategies for responding to project risk efficiently and effectively. This paper presents an IT project risk identification framework to facilitate identifying and understanding various project risks as part of an overall project risk management process. The proposed framework should be of interest to IT practitioners during the creation of the project plan and over the course of a project so that appropriate and corrective actions can be taken as needed. Moreover, this risk identification framework should also be of interest to IT academics in terms of teaching project risk management or as a theoretical basis for future research. Taken together, this may help increase the likelihood of IT project success

Agent Based Modeling and Simulation Framework for Supply Chain Risk Management

This research develops a flexible agent-based modeling and simulation (ABMS) framework for supply chain risk management with significant enhancements to standard ABMS methods and supply chain risk modeling. Our framework starts with the use of software agents to gather and process input data for use in our simulation model. For our simulation model, we extend an existing mathematical framework for discrete event simulation (DES) to ABMS and then implement the concepts of variable resolution modeling from the DES domain to ABMS and provide further guidelines for aggregation and disaggregation of supply chain models. Existing supply chain risk management research focuses on consumable item supply chains. Since the Air Force supply chain contains many reparable items, we fill this gap with our risk metrics framework designed for reparable item supply chains, which have greater complexity than consumable item supply chains. We present new metrics, along with existing metrics, in a framework for reparable item supply chain risk management and discuss aggregation and disaggregation of metrics for use with our variable resolution modeling

Developing a framework of non-fatal occupational injury surveillance for risk control in palm oil mills

Non-fatal occupational injury (NFOI) and its risk factors have become a current global concern. The need of research towards the relationship between occupational injury and its risk factor is essential, to fulfil the purpose and setting the priority of implementing safety preventive approaches at workplace. This research intended to develop a framework of NFOI surveillance by using epidemiological data, noise exposure data and NFOI data among palm oil mills’ workers. A total of 420 respondents who assigned in operation and processing areas (OP) (n=333) and general or office workers (n=87) had voluntary participated in this research. A questionnaire session with respondents was held to obtain epidemiological data and NFOI information via validated questionnaire. Noise hazard monitoring was executed by using Sound Level Meter (SLM) for environmental noise monitoring and Personal Sound Dosimeter for personal noise monitoring. Gathered data were analysed in quantitative method by using statistical software IBM SPSS Statistic version 21 and a risk matrix table for injury risk rating evaluation. It was discovered that high noise exposure level (≥ 85 dB[A]) was significantly associated with non-fatal occupational injury among OP workers (φ=0.123, p<0.05) with OR=1.87 (95% CI, 1.080-3.235, p<0.05). Risk rating for reported NFOI was at moderate level, with minor cuts and scratches were the dominant type of injury (42.6%). Analysis of logistic regression indicated that working in shift, not wearing protective gloves, health problems such as shortness of breath and ringing in ears, and excessive noise level (≥ 85 dB[A]) were the risk factors of NFOI in palm oil mills among OP workers. A framework of nonfatal injury surveillance in palm oil mills was developed based on the findings with integration of risk management process and injury prevention principles. This framework is anticipated to help the management in decision making for preventive actions and early detection of occupational health effects among workers

An interpretive study of software risk management perspectives.

Thesis (M.Sc.)-University of Natal, Pietermaritzburg, 2002.This dissertation addresses risk management in the software development context. The discussion commences with the risks in software development and the necessity for a software risk management process. The emergent discourse is based on the shortfalls in current risk management practices, elaborated in the software risk management literature. This research proposes a framework for a field investigation of risk management in the context of a particular software development organization. It was experimentally tested within several companies. This framework was designed to provide an understanding of the software development risk phenomena from a project manager's perspective and to understand how this perspective affects their perception. This was done with respect to the consideration of the advantages and disadvantages of software risk management as regards its applicability or inapplicability, respectively. This study can be used as a precursor to improving research into the creation of new software risk management frameworks

ANALISIS TATA KELOLA RISIKO TEKNOLOGI INFORMASI DENGAN FRAMEWORK RISK IT (Studi Kasus : Badan Perencanaan Pembangunan Daerah Provinsi Riau)

Agency for development planning Riau Province (BAPPEDA) is a regional technical agencies responsible for development planning, in this case BAPPEDA using information technology for support performance that is SIPD (Information System for Regional Development). Implementation of information technology (IT) in addition to provide benefits may also have risks that can harm and affect business processes or work. One of the risks that have occurred are: the absence of backup database, hardware and software damage, loss of inputted data, virus infection or human error. To determine the risk management and take measures against the risk, governance risk analysis using Risk IT Framework. Risk IT Framework is a framework that is assessed in accordance with the model to be applied in this study using a domain RG (Risk Governance). Results of this research is mapping the risk, maturity risk models in a state average of Defined Process, and management of IT governance recommendation

Recursive quantum repeater networks

Internet-scale quantum repeater networks will be heterogeneous in physical technology, repeater functionality, and management. The classical control necessary to use the network will therefore face similar issues as Internet data transmission. Many scalability and management problems that arose during the development of the Internet might have been solved in a more uniform fashion, improving flexibility and reducing redundant engineering effort. Quantum repeater network development is currently at the stage where we risk similar duplication when separate systems are combined. We propose a unifying framework that can be used with all existing repeater designs. We introduce the notion of a Quantum Recursive Network Architecture, developed from the emerging classical concept of 'recursive networks', extending recursive mechanisms from a focus on data forwarding to a more general distributed computing request framework. Recursion abstracts independent transit networks as single relay nodes, unifies software layering, and virtualizes the addresses of resources to improve information hiding and resource management. Our architecture is useful for building arbitrary distributed states, including fundamental distributed states such as Bell pairs and GHZ, W, and cluster states.Comment: 14 page