risk( 风险 ) management presented by basker george
TRANSCRIPT
Risk( 风险 ) Management
Presented by Basker George
Risk Management Any project can fail Reasons for failure
Lack of proper engineering Lack of proper Management Occurrence ( 出现 ) of some unforeseen
( 无法预料的 ) events Any other problem
Risk Management The basic goal of all activities in a project is to ens
ure( 保证得到 ) that project succeeds. The engineering activities ensure that project doe
s not fail on engineering front( performance( 性能 ), functionality ( 功能性 , 泛函性 ) & Quality).
The Project Management activities focus on making sure that project does not fail due to poor management.
Risk Management tries to minimize the chance of failure caused by unforeseen events( 事件 ).
Risk Management
In project, a RISK is any condition or event ( 事件 ) whose occurrence ( 发生 ) is not certain( 确定的 ).
That is a event that can affect in a unfavorable ( 不宜的 ) manner.
The two element of risk are: Occurrence of risk is probabilistic( 或然说的 ) If it occurs, it can cause damage to project.
Risk Management The purpose of Risk Management is to
identify potential ( 可能的 ,) risk & then take actions such that their effect on project is. Minimized( 最小化 ).
Proper process for RISK MANAGEMENT are a requirement for Integrated Software Management KPA at CMM Level 3.
Risk Management In this cheaper we shall study
General concept of RISK & Risk Management
Risk Assessment( 估价 ) Risk Control
Background Risk is the possibility of loss, injury( 伤害 ) ,
disadvantage or destruction ( 破坏 ). Risk are events or condition that may or m
ay not occur, “wish they will never occur”.
When it occurs, It has negative impact ( 效果 ) on the project
Risk management Risk management is
to identify the possible risk Assess the consequence( 结果 ) Plan to overcome ( 战胜 ) risk
Risk management activities Risk assessment
Risk identification ( 辨认 ) Risk analysis( 分析 ) Risk prioritization( 优先 )
Risk control Risk management planning Risk resolution( 决心 ) Risk monitoring( 控制 )
Risk management & project execution
Risk Assessment
Monitoring
Managing
Risk
Project processinformation
control
Other
factors
Risk Management at Infosys Risk Assessment
At Infosys risk assessment consists of two components:
Risk Identification Risk Prioritization
Risk Identification This activity focuses on enumerating ( 列
举 ) possible risk to projects Checklist of possible risk Interview, Meeting, & brainstorming( 智力
爆发 ) Review of plan, process & work products Surveys Risk management of similar project in PDB
Risk Prioritization The identified risk give a
possible event Therefore the risk has to be
prioritize to focus & manage the highest risk
It has to be analyzed for the possible effect & loss to the project.
Risk Prioritization Since risk is a probabilistic in nature, i
t can be categorized as: Risk Category ( 种类 ) Impact Category.
Risk CategoryProbability Range
Low 0.0 to 0.3
Medium 0.3 to 0.7
High 0.7 to 1.0
Impact Category
Level of consequences
Range
Low 0 - 3
Medium 3 - 7
High 7-9
Very High 9-10
Cont… The steps in risk prioritization are: For each risk, rate the probability for the risk
as Low, Medium, or High (0 – 1). For each risk, assess its effect on the project
as Low, Medium, High, V High(1-10) Rate the risk based on the probability &
effect on the project. Select the top risk items for mitigation &
tracking
Risk Control Once the risk has been identified & prioritiz
ed plan & manage them so that their consequence is minimal.
That is… Planning of risk mitigation( 减轻 ) Execution of a plan Monitoring the risk
The process database can also be used to identify risk & mitigation steps.
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
1 Shortage of technically trained manpower
Make estimates with little allowance for initial learning timeMaintain buffers of extra resourceDefine project specific training programConduct cross-training session
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
2 Too many requirement changes
Obtain sign off for initial requirement specification from clientConvince the client that changes in requirement will affect the scheduleDefine a procedure to handle requirement changesNegotiate payment on actual effort
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
3 Unclear requirement
Use experience & logic to make some assumptions & keep the client informed; obtain sign- offDevelop prototype /get the requirement reviewed by the client
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
4 Manpower attrition
Ensure multiple resource are assigned on key project areasHave team buildingRotate jobs among team membersKeep extra resources in the project as backupMaintain proper documentation of individual workFollow the configuration management process & guidelines strictly
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
5 Externally driven decisions forced on project
Outline disadvantages with supporting facts/data & negotiate with the personnel responsible for forcing the decisions.If inevitable, identify the actual risk & follow its mitigation plan
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
6 Not meeting performance requirements
Define the performance criteria clearly & get them reviewed by the clientDefine standards to be followed to meet the performance criteriaPrepare the design to meet performance criteria & review itSimulate prototype performance of critical transactionTest with a representative volume of data where possibleConduct stress test where possible.
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
7 Unrealistic Schedule
Negotiate for a better scheduleIdentify parallel taskHave resource earlyIdentify area that can be automatedIf the critical path is not within schedule, negotiate with the clientNegotiate payment on actual effort
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
8 Working on new technology(Hardware & Software)
Consider a phased deliveryBegin with the delivery of critical modulesInclude time in the schedule for learning curveProvide training in the new technologyDevelop proof-of-concept application
Top Ten Risk & their risk mitigation steps
Sq. No
Risk Category
Risk Mitigation Steps
9 Insufficient business knowledge
Increase interaction with the client & ensure adequate knowledge transfer.
10 Link failure / slow performance
Set proper expectation with the clientPlan ahead for the link loadPlan the optimal link usage