Presentation is loading. Please wait.

Presentation is loading. Please wait.

University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Risk Assessment: Business Activity Maps (BAMs) COMM80: Risk Assessment of Systems.

Published by Modified over 9 years ago

Similar presentations

Presentation on theme: "University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Risk Assessment: Business Activity Maps (BAMs) COMM80: Risk Assessment of Systems."— Presentation transcript:

1 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Risk Assessment: Business Activity Maps (BAMs) COMM80: Risk Assessment of Systems Change Unit 9

2 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Objectives of Session Coverage To understand the use of RAMESES Business Activity Maps. To understand the purpose of RAMESES Business Activity Maps. To develop an ability to read, modify andcreate such maps.

3 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Business Activity Maps (BAMs) Focus on perspective of fit of system to business. –Layers of information, current, proposed system Tutorial: consideration of usage, modification of existing maps.

4 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Requirements for the Technique Evolved in response to three main requirements for a Small-Medium Enterprise (SME) environment: –effective acquisition (gathering the data), without disrupting the business, –accessible presentation of findings, and –analysis of the business process.

5 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Mapping the Business Activity Mapping happens at two levels: –managerial (macro) This follows the reporting structures for the area of the business being examined. –operational (micro) This follows the individual tasks in a process.

6 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Mapping the macro (top) level To map the business activities at the macro (managerial/top) level “reporting- to” and “responsibility for” structures are used. –A starting point for these can be organisational hierarchy charts.

7 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Example – starting at the top level

8 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Mapping the macro level … Then the boundary for the project is identified. –only the relevant reporting-structures are tracked any further. –To track this information from the senior managers worksheets (forms) are used.

9 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Example – starting at the top level

10 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Example top-level Worksheets The top worksheet (form) collects the “data from each senior manager within the areas of concern to the project.

11 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Example top-level Worksheets The second worksheet (form) typically records: the managerial/supervisory structure below this particular senior manager the related responsibilities, and any software that is believed to be used within their area of influence.

12 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Constructing the top- level Business Activity Map This mechanism of gathering the necessary data using worksheets (forms). –avoids the need for specialist training of the staff. –reveals the senior managers perceptions of what is happening within the organisation.

13 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Macro Level Example

14 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Mapping the micro level To map the activities within a business process at the micro level individual task inputs and outputs are tracked.

15 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Task Trailing

16 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Task Trailing

17 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Purpose of the Micro (bottom/operation level) Gathers the detailed data required. Identifies Staff within the Business Processes. Documents the Task Trail for the Business Processes within the boundary, including: Identification of IT usage. Audit Staff IT Profile. Audit Staff IT-Satisfaction.

18 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Micro-level Worksheets These sheets are for individual sets of “input-task-output”.

19 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Micro-level Work sheet (for details of IT-usage etc.)

20 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Construction of the Business Activity Map The operational-level task trail data is gathered from individuals at their work areas using a set of worksheets (forms). –Again this approach avoids the need for specialist training of the staff. –The data from each individual is used to construct the complete business process (detailed business activity map).

21 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Micro Level Example

22 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Presenting the Maps: Hierarchies and Layers. Hierarchies are traditionally used in process modelling to drill down into the detail of a process. –In this approach comparisons can be made between the activities perceived by management levels and the operationalised activies. Layers allow additional features to be added to/removed from a map. E.g: –IT support is superimposed onto the maps. –Staff skill can also be added.

23 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Presenting the Maps: IT Usage Maps with IT usage added provide richer data sets. –They also enable comparisons (managerial v. operational).

24 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 … Systems Usage Layer Added Colour is used to represent different software solutions detected as in use.

25 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Presenting the Maps: Current and Planned IT Usage. Maps with IT usage added provide richer data sets. –They enable comparisons between the current usage of IT and the planned usage.

26 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Proposed System Layer Added Proposed system usage

27 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 How is this Risk Analysis? The sets of maps highlight: –Inconsistencies between the managerial views of the business activities and their actual operation. –The usage of IT in the organisation (official and un-official) and the level of reliance on these solutions. –The extent of change from the current state of IT usage to the proposed IT solution. –The staff competency and confidence in using current IT solutions. In all cases the bigger the gap between the comparisons the greater the risk in a change management project. –Without the maps decisions would have been based on inaccurate managerial knowledge/data. –With the maps the risks accompanying the change are made explicit and can be dealt with.

28 University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Summary You have been introduced to RAMESES Business Activity Maps. The concept of mapping at the macro (managerial) and micro (operational) level has been discussed. The process used to gather the data and construct the maps has been defined. Some ways in which the maps can be use for analysis have been highlighted. The link with Risk Analysis has been made explicit.

Download ppt "University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 9 Risk Assessment: Business Activity Maps (BAMs) COMM80: Risk Assessment of Systems."

Similar presentations

1 EBIP Synthesis Report Preliminary policy messages Vladimir López-Bassols, OECD EBIP Workshop 29-30 October 2001, Rome.

1 EBIP Synthesis Report Preliminary policy messages Vladimir López-Bassols, OECD EBIP Workshop October 2001, Rome.
Knowledge and Risk Hayden Cater Industry OHS Co-ordinator Department of Primary Industries www.dpi.vic.gov.au.

Knowledge and Risk Hayden Cater Industry OHS Co-ordinator Department of Primary Industries
Identifying enablers & disablers to change

Identifying enablers & disablers to change
CB330005S Review and Planning UND:0414972 April 2007.

CB330005S Review and Planning UND: April 2007.
Unilever IT Career Framework Daryl Beck IT Excellence Thursday 6 th December 2007.

Unilever IT Career Framework Daryl Beck IT Excellence Thursday 6 th December 2007.
ISEB Qualifications an evolving framework for the future.

ISEB Qualifications an evolving framework for the future.
CNA Report. I. Executive Summary Keep short Simplify findings Include qualitative judgments about implications.

CNA Report. I. Executive Summary Keep short Simplify findings Include qualitative judgments about implications.
University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 11 Risk Mitigation and Contingency Planning COMM80: Risk Assessment of Systems Change.

University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 11 Risk Mitigation and Contingency Planning COMM80: Risk Assessment of Systems Change.
Creating Architectural Descriptions. Outline Standardizing architectural descriptions: The IEEE has published, “Recommended Practice for Architectural.

Creating Architectural Descriptions. Outline Standardizing architectural descriptions: The IEEE has published, “Recommended Practice for Architectural.
University of Sunderland CSEM04 ROSCO Unit 13 Unit 13: Risk Methods CSEM04: Risk and Opportunities of Systems Change in Organisations Dr Lynne Humphries.

University of Sunderland CSEM04 ROSCO Unit 13 Unit 13: Risk Methods CSEM04: Risk and Opportunities of Systems Change in Organisations Dr Lynne Humphries.
Software Quality Matters Ronan Fitzpatrick School of Computing Dublin Institute of Technology.

Software Quality Matters Ronan Fitzpatrick School of Computing Dublin Institute of Technology.
University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 14 The RAMESES Method. COMM80: Risk Assessment of Systems Change Unit 14.

University of Sunderland COMM80 Risk Assessment of Systems ChangeUnit 14 The RAMESES Method. COMM80: Risk Assessment of Systems Change Unit 14.
The Software Product Life Cycle. Views of the Software Product Life Cycle  Management  Software engineering  Engineering design  Architectural design.

The Software Product Life Cycle. Views of the Software Product Life Cycle  Management  Software engineering  Engineering design  Architectural design.
1 Performance Auditing  In IT Environment  Evidence Gathering & Analysis Techniques  Computer Assisted Techniques  Use of IDEA.

1 Performance Auditing  In IT Environment  Evidence Gathering & Analysis Techniques  Computer Assisted Techniques  Use of IDEA.
COMPETENCY MAPPING 1 ‘Best organs succeed not because of people but because they have right people’. 2. Modern orgns. realized that: HR is the most valuable.

COMPETENCY MAPPING 1 ‘Best organs succeed not because of people but because they have right people’. 2. Modern orgns. realized that: HR is the most valuable.
Accelerated EMS Session 4 – 28 January 2008.

Accelerated EMS Session 4 – 28 January 2008.
Welcome ISO9001:2000 Foundation Workshop.

Welcome ISO9001:2000 Foundation Workshop.
The Value of Using the Process Approach for Internal Auditing Frank Sidorowicz TL 9000 Program Director Orion Registrar, Inc.

The Value of Using the Process Approach for Internal Auditing Frank Sidorowicz TL 9000 Program Director Orion Registrar, Inc.
Conducting the IT Audit

Conducting the IT Audit
Planning an Internal Audit JM García Merced. Brainstorm.

Planning an Internal Audit JM García Merced. Brainstorm.

Similar presentations

Ads by Google