Lecture 21: Risk Management

Question 1

What is risk analysis?

Answer 1

Identifying, assessing, and prioritizing risks that could negatively impact a project or system

Question 2

What are the types of risk?

Answer 2

Speculative: implies the possibility of either a profit or a loss
Static: Only have losses

Question 3

How do risks happen?

Answer 3

Lack of information
Lack of control
Lack of time
Lack of resources

Question 4

What is risk identification?

Answer 4

Attempts to reduce the structural uncertainty - missing information
Tries to identify the system variables
Tries to determine the potential threats to the system’s success

Question 5

What is risk estimation?

Answer 5

Attempts to reduce the measurement uncertainty
Tries to assign meaningful values to the system variables
Tries to determine the effects of the identified threats on the system
Tries to assign meaningful values to the losses associated with the identified threats

Question 6

What is risk evaluation?

Answer 6

Tries to assign priorities to the risks
Tries to generate ways to reduce, avoid, or eliminate risks

Question 7

What is risk planning?

Answer 7

Choosing a course of action acknowledging all of the known risks involved
Develops a plan for doing that course of action
Develops a risk aversion plan

Question 8

What is risk control?

Answer 8

Implements the risk aversion plan
Updates and supports the plan as needed

Question 9

What is risk monitoring?

Answer 9

Watches for risk changes
Refines the plans as needed to account for new or changing risks

Question 10

When should risk analysis be done?

Answer 10

Only when the risks are expected to exceed the cost of doing the assessment

Question 11

What is a risk table?

Answer 11

For each risk, add an entry to each of the three columns:
Scenario: what could go wrong
Likelihood: probability of it occurring
Damage: how will it affect us

Question 12

Precision vs. Accuracy

Answer 12

Precision: Exactness by which we describe a variable
Accuracy: Freedom from error

Question 13

What are estimation biases?

Answer 13

People tend to think their own estimates are more accurate than they really are
Lack of understanding of probability and statistics can lead to bad estimates

Question 14

What is system failure probability?

Answer 14

Even if low probability component failure, system probability failure can be high due to large number of components

Question 15

What are some classic mistakes?

Answer 15

People-related: no motivation, weak personnel, adding people late, etc.
Process-related: Overly optimistic schedules, insufficient planning, etc.
Product-related: Requirements
Technology-related: Silver-bullet syndrome, overestimated savings from new tech

Question 16

How to lower risks?

Answer 16

Risk 1: Personnel shortfalls: Staff best people you can afford
Risk 2: Unrealistic schedules and budgets: Improve estimation process
Risk 3: Developing the wrong software functions: Reevaluate market forecasting, get users involved
Risk 4: Developing wrong UI: Involve users
Risk 5: Gold plating: Design to cost
Risk 6: Continuing stream of required changes: Set a threshold
Risk 7: Shortfalls in externally furnished components