This two day seminar is intended for software managers and senior developers, those responsible for methods and process, and anyone taking on the challenge of an aggressively scheduled software effort.
Risk Management for Software:
Steering Projects Through the Risks
|
Speaker: |
Tim Lister |
|
This two day seminar is intended for software managers and senior developers, those responsible for methods and process, and anyone taking on the challenge of an aggressively scheduled software effort.
Building and maintaining software is a risky business. Since software permeates and controls so much of the present-day enterprise (and its products), lateness, cost excess and failure to perform can have far-reaching consequences. A common response to such risk is to ignore it entirely. We justify this as "positive attitude," the heart and soul of a Can-Do management philosophy. But when real risks turn into real problems and send our projects down in flames, we can see that our past "positive attitude" was little more than Denial. Even when denial is not a factor, risks are often ignored due to inexperience or lack of a proven strategy to minimise risk impact. There must be a better way.
The purpose of this seminar is to prepare participants to apply the emerging discipline of Risk Management to software efforts. They will learn to identify and quantify the specific uncertainties that threaten success. For each uncertainty so identified, participants will learn to contain, mitigate or eliminate its impact. The principal focus will be on managing those risks that lead to missed deadlines, budget excesses and unacceptable product quality.
Welcome to the Real World
Good luck on your next software project . . . but don't count on it. A healthy, positive attitude should allow you to expect a few decent breaks along the way, but expecting no bad breaks at all just doesn't make sense. It doesn't make sense, yet it is more or less the standard today in managing software efforts. We plan our projects based on tasks that MUST be done, without so much as a nod of the head toward tasks that MIGHT have to be done. Such plans reflect how the effort would proceed if nothing ever went wrong. No wonder we're plagued with time and cost overruns and quality shortfalls. Something always goes wrong.
Planning the core activities, the must-be-dones of software development, is a necessary but not sufficient beginning. Since projects never run exactly to optimal plan, we also need Risk Management. Risk Management is project management for adults. It focuses your attention constructively on the very aspects that, ignored, could lead to project debacle.
Running Away from Risk is a No-Win Strategy
A strategy of risk aversion leads us to become more and more efficient and doing things that are less and less worth doing. The projects that deliver real benefit are bound to be full of risk. Instead of running away from risk, we need to school ourselves to run toward it . . . but very, very carefully. Since high benefit endeavours are always risky, we have to develop ways to discover the lurking risks, estimate their impact, optimise our response, and monitor for change. These are the essential skills of Risk Management.
The Opposite of Risk Management is Reckless Management
Just exactly what is it that we manage on software projects if not the risks? Project management IS risk management. The risk aware manager can show you a substantial list of causal risks (not just the end-result risks of lateness or overrun, but the root causes of such outcomes). He/she can tell you the likely cost in time or money should the risk materialise, and point to a specific set of materialisation indicators and contingency plans to protect the project. In the absence of such sensible Risk Management, those who are counting on project success have no better strategy than to cross their fingers and hope for the best.
Overture
The statistical inevitability of risk. The link between risk and opportunity. Creating a no-fault attitude toward risk. Managing software projects by managing their risks. Risk aversion. Building a risk base. Role of the post-mortem. The risks of Denver International Airport as an example.
The How-Tos of Risk Management
Building a census of risks. Separating resultant and root causal risks. Object analysis of risk. Quantitative analysis of each risk. Exposure calculation. Tracking for transitions. Mitigation strategies. Simple scheme for risk declaration.
Pre-empting Risk
Three steps to risk discovery. Roles of the discovery process. Performing backward root cause analysis. Making risk discovery safe for all hands. Alternate strategies: the spiral Win-Win model, risk and Win-Win conflicts, linking risks and requirements.
Tools and Procedures
Spreadsheet methods. VBA (Visual Basic for Applications) tools. Survey of available commercial tools. Starter toolkit for risk management.
Five Major Risks and How to Control Them
The common risks of software development efforts, quantified and applied. The beginners' Risk Management database. Sources of tailored risk data. Coming up with a risk-based schedule.
Conflict Resolution
Conflict as a source of risk in software projects. Building conflict detection and resolution skills. Common conflict scenarios and how they play out. Negotiation and mediation. Mediation within the project. Leading from a position of no power.
Bring Risk Management to your Organisation
Conflict as a source of risk in software projects. Building conflict detection and resolution skills. Common conflict scenarios and how they play out. Negotiation and mediation. Mediation within the project. Leading from a position of no power.
A Dynamic of Risk Management
Using a modified Earned Value metric based on successive builds to track closure. Risk blocking. Progressive commitment of risk mitigation cost. Mid- and late-project de-rail strategies.
|
|
Timothy Lister is a Principal Member of The Atlantic Systems Guild Inc., based in the New York office. He divides his time between consulting, teaching, and writing. His present focus is on tailoring methods and selecting tools for software development groups interested in increased project productivity an product reliability. Tim Lister has 25 years of professional software development experience. Before the formation of The Atlantic Systems Guild, he worked at Yourdon Inc. from 1975 to 1983. At Yourdon he was Executive Vice President and Fellow in charge of all instructor/consultants and responsible for the technical content of all seminars, and the quality of all consultations. In addition to their joint creation of the book Peopleware: Productive Projects and Teams, Tim Lister is co-author with Tom DeMarco of the immensely popular course and video sequence, Controlling Software Projects: Management, Measurement and Estimation. The two partners have also produced a new video entitled Productive Teams, available through Dorset House Publishing in New York. Tim Lister also instructs on the latest methods of software systems analysis and design. His specific views on Risk Management were featured in the Point/Counterpoint section of the May, 1997 special issue of IEEE Software. |
© Copyright IRM UK Strategic IT Training, Bishops Walk House, High Street, Pinner HA5 5PJ UK, Tel +44 (0)20 8866 8366, Fax +44 (0)20 8866 7966, enquiries@irmuk.co.uk, www.irmuk.co.uk.
