Presentation is loading. Please wait.

Presentation is loading. Please wait.

Lecture 7 Risk Analysis CSCI – 3350 Software Engineering II Fall 2014 Bill Pine.

Published bySherman Walters Modified over 8 years ago

Similar presentations

Presentation on theme: "Lecture 7 Risk Analysis CSCI – 3350 Software Engineering II Fall 2014 Bill Pine."— Presentation transcript:

1 Lecture 7 Risk Analysis CSCI – 3350 Software Engineering II Fall 2014 Bill Pine

2 CSCI 3350Lecture 7 - 2 Introduction Relation to Top 10 Risk List Methodology for Quantifying Setting Priority

3 CSCI 3350Lecture 7 - 3 Setting Risk Priority In a previous lecture, priority set by –Expert opinion –Intuition –Whim There are more rigorous techniques that may be employed We will examine a few methods

4 CSCI 3350Lecture 7 - 4 Rationale All software project can benefit from risk analysis Life and safety critical systems –Subject to standards requiring rigorous risk analysis as an integral part of the development process Other systems can also benefit

5 Levels of Criticality In The Methodology Space, Alistair Cockburn defines four levels of criticality These can serve as a basis for risk mitigation The levels are –Loss of life –Loss of essential money –Loss of discretionary money –Loss of comfort CSCI 3350Lecture 7 - 5

6 Levels of Criticality (cont) The previous levels are in order of decreasing criticality While risk analysis can be usefully applied to all levels –The consequences of project failure, especially in the first two levels, mandates the use of risk analysis in software development CSCI 3350Lecture 7 - 6

7 CSCI 3350Lecture 7 - 7 Benefits To Non Critical Systems Highlights potential problem areas Provide developers with the tools to –Identify the most important risks –Rationally prioritize those risks –Allocate resources to mitigate those risks Techniques also of use to the software tester –Select tests with, potentially, the highest payoff

8 CSCI 3350Lecture 7 - 8 Components of Risk Analysis Risk analysis is –A well defined process –Allows the engineer to set the priorities for the risk list Consist of two components –Assigning likelihood of occurrence to each risk –Assessing the severity of the impact of the risk, should the issue occur

9 CSCI 3350Lecture 7 - 9 Likelihood of Occurrence Express as a probability –Range 0 → 1.0 Fixed integer values – Set of 3 values: 1, 2, 3 Associate with levels: Low, Moderate, High – Set of 5 values: 1, 2, 3, 4, 5 Associate with levels: Very Low, Low, Moderate, High, Very High

10 CSCI 3350Lecture 7 - 10 Likelihood of Occurrence (cont) May be useful to provide a quantification –For Example: LevelProbability Very Low< 0.1 Low≥ 0.1 but < 0.4 Moderate≥ 0.4 but < 0.6 High≥ 0.6 but < 0.9 Very High≥ 0.9

11 CSCI 3350Lecture 7 - 11 Severity of Impact Fixed integer values –Set of 4 values: 1, 2, 3, 4 –Associated with severities: Insignificant, Tolerable, Severe, Catastrophic

12 CSCI 3350Lecture 7 - 12 Analysis Techniques Two independent techniques –Risk exposure Calculate the product of likelihood and impact Priority directly proportional to risk –Risk matrix Scatter-plot of the likelihood / severity values Assign importance to severity or impact as appropriate Ignores the risk exposure value

13 CSCI 3350Lecture 7 - 13 Example Consider this project risk identification IDDescriptionLikelihood ( 1 – 10) Severity (1-10) Exposure AKey personnel leave110 BWrong requirements recorded212 CInappropriate user interface188 DUn-needed features919 EUncontrolled customer changes6742 FLate delivery of graphics8972 GPoor user documentation5315

14 CSCI 3350Lecture 7 - 14 Threshold by Quadrant P 1P 2 P 3 P 4

15 CSCI 3350Lecture 7 - 15 Alternate Threshold by Quadrant P 1 P 2 P 3 P 4

16 CSCI 3350Lecture 7 - 16 Threshold by Diagonals P 1 P 2 P 3 P4

17 CSCI 3350Lecture 7 - 17 High Severity Threshold P 1 P 2P 3 P 4P 5

18 CSCI 3350Lecture 7 - 18 Risk Matrix Types Threshold by quadrant –High severity more important than likelihood Alternate threshold by quadrant –High likelihood more important than severity Threshold by diagonals –Equal importance to likelihood and severity High severity threshold –Highest severity items on equal footing, then stress severity over likelihood

19 CSCI 3350Lecture 7 - 19 Steps in Risk Analysis 1.Select a scale for likelihood and severity 2.Create a table, containing columns for risk name, likelihood and severity 3.Assign values for likelihood and severity to each risk 4.Select an analysis technique and apply it to the values assigned in step 3 5.Assign a priority to each risk based upon the results of step 4

20 CSCI 3350Lecture 7 - 20 Summary How fine a granularity for scales on severity and likelihood? –Depends upon the situation Enough to separate the risks No so many as to make it hard to assign a value Relative ranking more important than absolute value Experienced person should assign the ranking

21 CSCI 3350Lecture 7 - 21 Summary (cont) Risk exposure doesn’t discriminate between high likelihood-low impact and low likelihood- high impact risks Risk analysis provides a rational way of assigning risks

Download ppt "Lecture 7 Risk Analysis CSCI – 3350 Software Engineering II Fall 2014 Bill Pine."

Similar presentations

Project management.

Project management.
Note: See the text itself for full citations. Information Technology Project Management, Seventh Edition.

Note: See the text itself for full citations. Information Technology Project Management, Seventh Edition.
Project Management Risk Management. Outline 1.Introduction 2.Definition of Risk 3.Tolerance of Risk 4.Definition of Risk Management 5.Certainty, Risk,

Project Management Risk Management. Outline 1.Introduction 2.Definition of Risk 3.Tolerance of Risk 4.Definition of Risk Management 5.Certainty, Risk,
Project Management Gaafar 2007 / 1 This Presentation is uses information from PMBOK Guide 2000 Project Management Risk Management* Dr. Lotfi Gaafar.

Project Management Gaafar 2007 / 1 This Presentation is uses information from PMBOK Guide 2000 Project Management Risk Management* Dr. Lotfi Gaafar.
Risk Analysis for Testing Based on Chapter 9 of Text Based on the article “ A Test Manager’s Guide to Risks Analysis and Management” by Rex Black published.

Risk Analysis for Testing Based on Chapter 9 of Text Based on the article “ A Test Manager’s Guide to Risks Analysis and Management” by Rex Black published.
Lecturer: Sebastian Coope Ashton Building, Room G.18 COMP 201 web-page: Project.

Lecturer: Sebastian Coope Ashton Building, Room G.18 COMP 201 web-page: Project.
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 1 Slide 1 Project management.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 1 Slide 1 Project management.
Project Risk Management

Project Risk Management
©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 4 Slide 1 COMP201 Project Management.

©Ian Sommerville 2000Software Engineering, 6th edition. Chapter 4 Slide 1 COMP201 Project Management.
Computer Engineering 203 R Smith Risk Management 7/2009 1 Risk Management The future can never be predicted with 100% accuracy. Failure to plan for risks.

Computer Engineering 203 R Smith Risk Management 7/ Risk Management The future can never be predicted with 100% accuracy. Failure to plan for risks.
Software Risk Management (Slides by Omar Garcia).

Software Risk Management (Slides by Omar Garcia).
©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 5 Slide 1 Project management.

©Ian Sommerville 2004Software Engineering, 7th edition. Chapter 5 Slide 1 Project management.
SQM - 1DCS - ANULECTURE 11-2005 Software Quality Management Software Quality Management Processes V & V of Critical Software & Systems Ian Hirst.

SQM - 1DCS - ANULECTURE Software Quality Management Software Quality Management Processes V & V of Critical Software & Systems Ian Hirst.
Creator: ACSession No: 10 Slide No: 1Reviewer: SS CSE300Advanced Software EngineeringDecember 2005 Project Management CSE300 Advanced Software Engineering.

Creator: ACSession No: 10 Slide No: 1Reviewer: SS CSE300Advanced Software EngineeringDecember 2005 Project Management CSE300 Advanced Software Engineering.
1 SOFTWARE PRODUCTION. 2 DEVELOPMENT Product Creation Means: Methods & Heuristics Measure of Success: Quality f(Fitness of Use) MANAGEMENT Efficient &

1 SOFTWARE PRODUCTION. 2 DEVELOPMENT Product Creation Means: Methods & Heuristics Measure of Success: Quality f(Fitness of Use) MANAGEMENT Efficient &
Software Project Risk Management

Software Project Risk Management
Project Management Hoang Huu Hanh, Hue University hanh-at-hueuni.edu.vn.

Project Management Hoang Huu Hanh, Hue University hanh-at-hueuni.edu.vn.
贾银山 Software Engineering, Chapter 5 Slide 1 Project management.

贾银山 Software Engineering, Chapter 5 Slide 1 Project management.
PRM 702 Project Risk Management Lecture #28

PRM 702 Project Risk Management Lecture #28
Project management DeSiaMore www.desiamore.com/ifm 1.

Project management DeSiaMore 1.

Similar presentations

Ads by Google