Software Development Project Risk Management: A New Conceptual Framework

Effective risk management contributes to the success of the software development project. The goal of this work was to identify risk management gaps, perspectives, the evolution of the theme and the study trends, in software development projects, using systematic literature review as a method. For the bibliometric analysis, articles referring to the topic were selected in the period from 2010 to 2018. As tools of analysis, Citespace and VOS Viewer software were used, allowing a comparative evaluation between the articles, as well as the analysis of clusters. Beyond content analysis of articles found. Gaps were identified for performance; team involvement; attention to failures; identification of tools for decision-making; and business strategy. In turn, perspectives were determined for research trends, such as the close relationship between business strategy, risk management and new management models. The research can propose new strategies and perspectives for risk management in software development and show their importance to the academic and practical spheres, demonstrating that the themes are complementary and important in the current technological and innovation sector.

Download Full-text

Project risk management: lessons learned from software development environment

Technovation ◽

10.1016/s0166-4972(03)00033-6 ◽

2004 ◽

Vol 24 (11) ◽

pp. 915-920 ◽

Cited By ~ 93

Author(s):

Y.H. Kwak ◽

J. Stoddard

Keyword(s):

Risk Management ◽

Software Development ◽

Lessons Learned ◽

Project Risk Management ◽

Development Environment ◽

Project Risk ◽

Software Development Environment

Download Full-text

Towards a Conceptual Framework for Security Requirements Work in Agile Software Development

10.4018/978-1-6684-3702-5.ch012 ◽

2022 ◽

pp. 247-279

Author(s):

Inger Anne Tøndel ◽

Martin Gilje Jaatun

Keyword(s):

Software Development ◽

Conceptual Framework ◽

Empirical Studies ◽

Cost Effective ◽

Development Project ◽

Security Requirements ◽

Security Requirement ◽

Software Development Project ◽

Software Companies ◽

Agile Software

Security requirement work plays a key role in achieving cost-effective and adequate security in a software development project. Knowledge about software companies' experiences of security requirement work is important in order to bridge the observed gap between software security practices and security risks in many projects today. Particularly, such knowledge can help researchers improve on available practices and recommendations. This article uses the results of published empirical studies on security requirement work to create a conceptual framework that shows key concepts related to work context, this work itself and the effects of this work. The resulting framework points to the following research challenges: 1) Identifying and understanding factors important for the effect of security requirements work; 2) Understanding what is the importance of the chosen requirements approach itself, and; 3) Properly taking into account contextual factors, especially factors related to individuals and interactions, in planning and analysis of empirical studies on security requirements work.

Download Full-text

Towards a Conceptual Framework for Security Requirements Work in Agile Software Development

International Journal of Systems and Software Security and Protection ◽

10.4018/ijsssp.2020010103 ◽

2020 ◽

Vol 11 (1) ◽

pp. 33-62

Author(s):

Inger Anne Tøndel ◽

Martin Gilje Jaatun

Keyword(s):

Software Development ◽

Conceptual Framework ◽

Empirical Studies ◽

Cost Effective ◽

Development Project ◽

Security Requirements ◽

Security Requirement ◽

Software Development Project ◽

Software Companies ◽

Agile Software

Security requirement work plays a key role in achieving cost-effective and adequate security in a software development project. Knowledge about software companies' experiences of security requirement work is important in order to bridge the observed gap between software security practices and security risks in many projects today. Particularly, such knowledge can help researchers improve on available practices and recommendations. This article uses the results of published empirical studies on security requirement work to create a conceptual framework that shows key concepts related to work context, this work itself and the effects of this work. The resulting framework points to the following research challenges: 1) Identifying and understanding factors important for the effect of security requirements work; 2) Understanding what is the importance of the chosen requirements approach itself, and; 3) Properly taking into account contextual factors, especially factors related to individuals and interactions, in planning and analysis of empirical studies on security requirements work.

Download Full-text

Software Development Project Risk

International Journal of Information Technology Project Management ◽

10.4018/jitpm.2012100103 ◽

2012 ◽

Vol 3 (4) ◽

pp. 41-55 ◽

Cited By ~ 4

Author(s):

Sam Thomas ◽

M. Bhasi

Keyword(s):

Software Development ◽

Factor Model ◽

Developed Countries ◽

Development Project ◽

Project Planning ◽

Software Project ◽

Project Risk ◽

Software Development Project ◽

External Risk ◽

Risk Dimensions

Software development risk points to an aspect of a development task, process or environment which, if ignored, tends to adversely affect the project performance. Observations from literature show that while many studies on software project risk construct have been done in developed countries, there is scarcity of literature from Asian countries, especially India. Hence, this research was formulated with an objective of studying software development project risk in the Indian context. Data related to the presence of risk items was collected from 527 software development projects in India. This data was factor analyzed to identify five major risk dimensions namely Team risk, Project planning and Execution Risk, External risk, User risk and Project complexity risk. The resulting factor structure was validated through Confirmatory Factor Analysis. Software project risk was seen to be best represented by a second order factor model with five first order factors.

Download Full-text