Effective Risk Management of Software Projects (ERM): An Exploratory Literature Review of IEEE and Scopus Online Databases

Abstract

The significance and the maturity level of software engineering have been increasing since 1968. However, software development, which falls under the umbrella of software engineering, is still evolving. Different software risk management process models, methods and techniques have been presented by researchers for the software industry to make the development of software projects more likely to succeed. However, a lot of software projects still fail to complete. The models used are general and based on the traditional technique of risk management. Hence, effective risk management (ERM) techniques are required for the development of mature software in order to increase the rate of success of software projects.

Appendix A: References of Papers Selected for Secondary Study

1. S1

   Brekka L.T, Maksimovic V, Picardal C, Iftekharuddi, K.: Risk management and systems engineering discipline. Aerospace and Electronics Conference, 1996. NAECON 1996., Proceedings of the IEEE 1996 National, vol.2, no., pp.829,835 vol.2, doi: 10.1109/NAECON.1996.517748 (1996)

2. S2

   Chittister, C.G, Haimes, Y.Y.: Systems integration via software risk management. Systems, Man and Cybernetics, Part A: Systems and Humans, IEEE Transactions on, vol.26, no.5, pp.521,532, Sep doi: 10.1109/3468.531900 (1996)

3. S3

   Boehm, B.W., DeMarco, Tom.: Software risk management,” Software, IEEE, vol.14, no.3,pp.17,19, doi: 10.1109/MS.1997.58922 (1997)

4. S4

   Williams R.C, Walker J.A, Dorofee, A.J.: Putting risk management into practice. Software, IEEE, vol.14, no.3, pp.75,82, doi: 10.1109/52.589240 (1997)

5. S5

   Collofello J.S, Pinkerton, A.K.: Integrating risk management into an undergraduate software engineering course. Frontiers in Education Conference, 1997. 27th Annual Conference. Teaching and Learning in an Era of Change. Proceedings., vol.2, no., pp.856,860 vol.2, 5-8, doi: 10.1109/FIE.1997.635987 (1997)

6. S6

   ADLER, T.R., LEONARD, J.G. and NORDGREN, R.K.: Improving risk management: Moving from risk elimination to risk avoidance. Information and Software Technology, 41(1),pp.29-34, Elsevier Science (1999)

7. S7

   KUMAR, R.L.: Managing risks in IT projects: An options perspective. Information and Management. 40(1), pp. 63-74., Elsevier Science (2002)

8. S8

   Skelton, T.M.; Thamhain, H.J., “User-centered design as a risk management tool in new technology product development,” Engineering Management Conference, 2005. Proceedings. 2005 IEEE International, vol.2, no., pp.690,694, doi: 10.1109/IEMC.2005.1559237 (2005)

9. S9

   Samad J, Ikram Naveed.: Managing the Risks: An Evaluation of Risk Management Processes. Multitopic Conference, 2006. INMIC ‘06. IEEE, vol., no., pp.281,287, 23-24, doi: 10.1109/INMIC.2006.358178 (2006)

10. S10

    Skelton, T.M.; Thamhain, H.J., “Managing the Sources of Uncertainty in Technology Projects,” Engineering Management Conference, 2006 IEEE International, vol., no., pp.473,477, 17-20, doi: 10.1109/IEMC.2006.427991 (2006)

11. S11

    Damian D, Chisan J.: An Empirical Study of the Complex Relationships between Requirements Engineering Processes and Other Processes that Lead to Payoffs in Productivity, Quality, and Risk Management. Software Engineering, IEEE Transactions on, vol.32, no.7,pp.433,453, doi: 10.1109/TSE.2006.61 (2006)

12. S12

    Nyfjord J, Kajko-Mattsson M.: Communicating Risk Information in Agile and Traditional Environments.Software Engineering and Advanced Applications,2007.33^rd EUROMICRO Conference on,vol.,no.,pp.401,408,28-31, doi: 10.1109/EUROMICRO.2007.22 (2007)

13. S13

    Smite D.: Project Outcome Predictions: Risk Barometer Based on Historical Data. Global Software Engineering, 2007. ICGSE 2007. Second IEEE International Conference on, vol., no., pp.103,112, 27-30, doi: 10.1109/ICGSE.2007.37 (2007)

14. S14

    DEY, P.K., KINCH, J. and OGUNLANA, S.O.: Managing risk in software development projects: A case study. Industrial Management and Data Systems, 107(2), pp. 284-303 (2007)

15. S15

    Ye Tao.: A Study of Software Development Project Risk Management. Future Information Technology and Management Engineering, 2008. FITME ‘08. International Seminar on,vol., no., pp.309,312, 20-20, doi: 10.1109/FITME.2008.125 (2008)

16. S16

    Lai Yifei; Qianhua Zhang; Jia Junping.: Study on Project Risk Management Information System Based on Progress Schedule,” Wireless Communications, Networking and Mobile Computing, 2008. WiCOM ‘08. 4th International Conference on, vol., no., pp.1,5, 12-14 doi: 10.1109/WiCom.2008.2444 (2008)

17. S17

    Al-Rousan, T, Sulaiman S, Salam R.A.: Project Management Using Risk Identification Architecture Pattern (RIAP) Model: A Case Study on a Web-Based Application. Software Engineering Conference, 2009. APSEC ‘09. Asia–Pacific, vol., no., pp.449,456, 1-3, doi: 10.1109/APSEC.2009.42 (2009)

18. S18

    Dapeng Liu, Qing Wang, Junchao Xiao.: The role of software process simulation modeling in software risk management: A systematic review. Empirical Software Engineering and Measurement, 2009. ESEM 2009. 3rd International Symposium on, vol., no., pp.302,311, 15-16 doi: 10.1109/ESEM.2009.5315982 (2009)

19. S19

    Verma C, Amin S.A.: Significance of Healthy Organizational Culture for Superior Risk Management During Software Development. Developments in E-systems Engineering (DESE),2010,vol.,no.,pp.182,189,6-8, doi: 10.1109/DeSE.2010.37 (2010)

20. S20

    Yong Hu, Xiangzhou Zhang, Xin Sun, Jing Zhang, Jianfeng Du, Junkai Zhao.: A Unified Intelligent Model for Software Project Risk Analysis and Planning. Information Management, Innovation Management and Industrial Engineering (ICIII), 2010 International Conference on, vol.4, no., pp.110,113, 26-28, doi: 10.1109/ICIII.2010.504 (2010)

21. S21

    Wen-Hsien Tsai, Sin-Jin Lin, Jau-Yang Liu, Kuen-Chang Lee, Wan-Rung Lin, Jui-Ling Hsu.: Examining the implementation risks affecting different aspects of Enterprise Resource Planning project success. Computers and Industrial Engineering (CIE), 2010 40th International Conference on,vol.,no.,pp.1,6,25-28, doi: 10.1109/ICCIE.2010.5668317 (2010)

22. S22

    Azizi N, Hashim, K.: Enterprise level IT risks: An assessment framework and tool. Computer Science and Information Technology (ICCSIT), 2010 3rd IEEE International Conference on,vol.3,no.,pp.333,336,9-11, doi: 10.1109/ICCSIT.2010.5563565 (2010)

23. S23

    Ai-Guo Tang, Ru-long Wang.: Software project risk assessment model based on fuzzy theory. Computer and Communication Technologies in Agriculture Engineering (CCTAE), 2010 International Conference On, vol.2, no., pp.328,330, 12-13, doi: 10.1109/CCTAE.2010.5544587 (2010)

24. S24

    Avdoshin S.M, Pesotskaya E.Y.: Software risk management. Software Engineering Conference in Russia (CEE-SECR), 2011 7th Central and Eastern European, vol., no., pp.1,6, doi: 10.1109/CEE-SECR.2011.6188471 (2011)

25. S25

    Betz S, Hickl, S, Oberweis A.: Risk Management in Global Software Development Process Planning. Software Engineering and Advanced Applications (SEAA), 2011 37th EUROMICRO Conference on, vol., no., pp.357,361, doi: 10.1109/SEAA.2011.64 (2011)

26. S26

    Tak Wah Kwan, Leung H. K N.: A Risk Management Methodology for Project Risk Dependencies. Software Engineering, IEEE Transactions on, vol.37, no.5, pp.635,648, doi: 10.1109/TSE.2010.108 (2011)

27. S27

    Samer Alhawari, Louay Karadsheh, Amine Nehari Talet, Ebrahim Mansour.: Knowledge-Based Risk Management Framework for Information Technology Project. International Journal of Information Management, Volume 32, Issue 1, Pages 50–65 (2012)

28. S28

    BARATEIRO, J. and BORBINHA, J.: Integrated management of risk information, Federated Conference on Computer Science and Information Systems, FedCSIS, pp. 791-798 (2011)

29. S29

    Khatavakhotan A.S, Siew Hock Ow.: Rethinking the Mitigation Phase in Software Risk Management Process: A Case Study. Computational Intelligence, Modelling and Simulation (CIMSiM), 2012 Fourth International Conference on, vol., no., pp.381,386, 25-27, doi: 10.1109/CIMSim.2012.62 (2012)

30. S30

    Hashimi H, Hafez, A, Beraka M.: A Novel View of Risk Management in Software Development Life Cycle. Pervasive Systems, Algorithms and Networks (ISPAN), 2012 12th International Symposium on, vol., no., pp.128,134, 13-15, doi: 10.1109/I-SPAN.2012.25 (2012)

31. S31

    Ying Qu, Meng-Jia Yuan, Feng Liu.: The risk factor analysis for software project based on the interpretative structural modelling method. Machine Learning and Cybernetics (ICMLC), 2012 International Conference on, vol.3, no., pp.1019,1024, 15-17,doi: 10.1109/ICMLC.2012.6359494 (2012)

32. S32

    Lobato L.L, da Mota Silveira Neto P.A, do Carmo Machado I, de Alemida E.S, de Lemos Meira S.R.: Risk management in software product lines: An industrial case study. Software and System Process (ICSSP), 2012 International Conference on, vol., no., pp.180,189, 2-3, doi: 10.1109/ICSSP.2012.6225963 (2012)

33. S33

    Bazaz Y, Gupta S, PrakashRishi O, Sharma L.: Comparative study of risk assessment models corresponding to risk elements. Advances in Engineering, Science and Management (ICAESM), 2012 International Conference on, vol., no., pp.61,66, 30-31 (2012)

34. S34

    Zhang, Y., H. Yang, and X. Jiang.: Study of project risk continuous process pattern. Advances in intelligent and soft computing. Vol. 137 AISC (2012)