chapter 4 Flashcards
what is risk?
factors that have a negative impact on a projects performance
list types of risk.
SCORP
- schedule
- cost
- operational [ validity of assumptions ]
- req
- performance
what is the purpose of risk management?
- minimizes effect of risk on performance
- identifies, calculates probability and consequence of a risk
risk management revolves around ________ and _________ ?
MAC
- risk assessment [identification, analysis, priority ]
- risk control [ planning, resolution, monitoring ]
what activities are undertaken under risk assessment?
risk:
- identification
- analyzation
- prioritization
what activities are undertaken under risk control?
risk:
- management plan
- resolution
- monitoring
________ produces list of risks with potential to disrupt a project’s schedule?
risk identification
what are the sub activities of risk identification?
ACDD
- assumption analysis
- checklist
- decision driven analysis
- decomposition driven analysis
what are components of a risk identification checklist?
What Would Devi Do? UR PG
- wrong ui
- wrong sw functionality
- dependency of technology
- dependency on external components
- unrealistic schedule and budget
- req changes
- personnel shortfalls
- gold plating
___________ analyzes all non technical decisions taken?
decision driven analysis
________ looks for optimistic assumptions?
assumption analysis
[ no one will quit, nothing goes wrong, on time delivery … ]
________ analyzes modules of the project?
decomposition analysis
[ 20% of modules cause 80% of the problems ]
what are the 2 main methods of risk analysis?
- estimate size of loss - easier to do
- estimate probability of loss
what does estimating the probability of loss entail in risk analysis?
- is subjective
- uses Delphi or other group consensus
- gambling analogies
- adjective calibration [ highly, likely, probably ]
what other approaches can be used to analyze risk? explain them.
decision analysis - calculates risk probability of a decision
network analysis - a critical feature not being done on time
quality factor analysis - surrounding quality attributes
performance analysis - using early simulations
____________ determines the impact of each risk?
risk prioritization
what is RE?
risk exposure is a prioritization technique that measures:
- expected value of loss due to a particular risk
how do we calculate RE?
RE = probability * size
calculate RE for:
1. Risk is “Facilities not ready on time”
Probability is 25%, size is 4 weeks.
2. Ex: risk is “Inadequate design – redesign required” Probability is 15%, size is 10 weeks
- RE = 0.25 * 4 = 1 week
- RE = 1.5 weeks
define risk control
unlike risk assessment, it involves the PM taking active measures to minimize impact of risk
during risk management planning, the plan for each risk needn’t be ___________ or ___________ ?
extensive or elaborate
what are the five components of Risk Management Planning?
why, what, who, how, how
- why is risk important
- what should be delivered
- who will handle risk management activities
- how many resources are needed
- how will risk be minimized
what are Risk management planning strategies?
ARRT
- avoidance
- reduce
- retain [ acceptance ]
- transfer [ insurance ]
____________ is the implementation of risk management planning?
risk resolution
_____________ describes how resolution measures are executed?
risk monitoring
what is a config item?
is a work product that is treated as a single entity for the purpose of configuration.
____________ is a composite of configuration items?
configuration management aggregate
example:
Serial port device driver is a CI
Linux OS is a CM Aggregate
___________ identifies the state of a configuration item at a well defined point in time.
version
_____________ are versions that are intended to coexist?
variants
____________ denotes a configuration item [ version ] that is relatively stable and is given to developers for use or review?
promotion
__________ is a version that has been made available to the client or the users?
release
__________ and _______ are library of promotions and library of releases respectively?
- workspace and repository
a software library provides facilities to _______, _______ and _______ config items?
label, store and identify
what are the 3 types of libraries?
- developer workspace / dynamic
- major directory / controlled
- sw repository / static
__________ library tracks promotions?
controlled
__________ library tracks releases?
static
_____ is a version that has been formally reviewed and agreed on and which can be changed only with change request.
baseline
______ denotes that a configuration item has met the quality set by the quality control team and can be used or reviewed by the users.
release
______ is a formal report issued by user or developer requesting a modification in configuration item.
change request
Define risk monitoring?
- Risk monitoring is how the measures described in resolution are executed.
Promotion vs Release?
- Promotion is a version that has been made available for developers
- Release is a version that has been made available for clients
Workspace vs Repository?
- Workspace - library of promotions
- Repository - library of Release.
abbriviate SCCI?
Software Configuration Control Item
______ is the process of evaluating, approving, disapproving, and managing changes to SCCIs.
configuration control
________ is the process of Controlling software version releases?
version control
What are the sources of change in software configuration management?
- Development - Maintenance - Growth
_________ is a process that handles changes to baseline product in a systematic and controlled manner?
sw config management SCM
List and explain three main activities of SCM?
- Identification of CIs
- Change Management Control
- Configuration audit and status reporting
__________ SCM activity requires a baseline product?
identification of CIs
List activities that Identification of CI clearly shows?
- Component affected by the change requirement
- The one that is undergoing a change
- The others affected by the change
Baseline products can be split as?
RAD, SDD etc
Change Management Control [ CMC ] includes?
- Program code changes
- Requirement and design changes
- Version release changes
List the 3 CMC(Change Management Control) processes?
- Accept
- Analyse
- Change Control Board
How can we ensure that change has been properly implemented and reported?
- Formal Technical Review
- Configuration Audit
- Status reporting
List configuration management tools.
- RCS - revision control system
- CVS - Concurrent version system
- Perforce
- Clear case
What feature CVS provides that RCS will not?
- Supports Branch
- Detects current change
List some of the features that “Clear Case” tool supports?
- CM aggregates
- configurations
