Software Risk Management Process Improvement Experience in Enterprise Projects

2020 Turkish National Software Engineering Symposium (UYMS) Pub Date : 2020-10-07 DOI:10.1109/UYMS50627.2020.9247026

Süleyman Muhammed Arikan, Özgür Yürekten

{"title":"Software Risk Management Process Improvement Experience in Enterprise Projects","authors":"Süleyman Muhammed Arikan, Özgür Yürekten","doi":"10.1109/UYMS50627.2020.9247026","DOIUrl":null,"url":null,"abstract":"Software projects that are growing and getting more complex require more effective risk management for project success. Continuous improvement of risk management process can be achieved by utilizing emerging technologies, standards and experiences. In the scope of this study, risk management process improvement activities are implemented and maintained for a year within a sampled set of software development projects carried out by the TÜBITAK-BİLGEM Cyber Security Institute. Our achievements, at the end of those activities, include the integration of risk management process with software development life cycle tools, a constantly visible risk treatment plan, while ensuring a proactive risk management approach. In addition, we setup an infrastructure to increase the involvement of stakeholders into the risk management process. The risk management process, which was improved as a result of this study, was implemented in other cyber security projects within TÜBITAK-BİILGEM Cyber Security Institute. In this study, we share our experiences during the adaptation of the process, preparation of management plan and establishment of infrastructure.","PeriodicalId":358654,"journal":{"name":"2020 Turkish National Software Engineering Symposium (UYMS)","volume":"5 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2020-10-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 Turkish National Software Engineering Symposium (UYMS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/UYMS50627.2020.9247026","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

Abstract

Software projects that are growing and getting more complex require more effective risk management for project success. Continuous improvement of risk management process can be achieved by utilizing emerging technologies, standards and experiences. In the scope of this study, risk management process improvement activities are implemented and maintained for a year within a sampled set of software development projects carried out by the TÜBITAK-BİLGEM Cyber Security Institute. Our achievements, at the end of those activities, include the integration of risk management process with software development life cycle tools, a constantly visible risk treatment plan, while ensuring a proactive risk management approach. In addition, we setup an infrastructure to increase the involvement of stakeholders into the risk management process. The risk management process, which was improved as a result of this study, was implemented in other cyber security projects within TÜBITAK-BİILGEM Cyber Security Institute. In this study, we share our experiences during the adaptation of the process, preparation of management plan and establishment of infrastructure.

查看原文本刊更多论文

企业项目软件风险管理过程改进经验

为了项目的成功，不断增长和变得越来越复杂的软件项目需要更有效的风险管理。通过利用新兴技术、标准和经验，可以实现风险管理过程的持续改进。在本研究的范围内，风险管理过程改进活动在TÜBITAK-BİLGEM网络安全研究所开展的一组抽样软件开发项目中实施和维护了一年。在这些活动的最后，我们的成就包括风险管理过程与软件开发生命周期工具的集成，一个持续可见的风险处理计划，同时确保一个主动的风险管理方法。此外，我们建立了一个基础设施，以增加涉众对风险管理过程的参与。这项研究改进了风险管理流程，并在TÜBITAK-BİILGEM网络安全研究所的其他网络安全项目中实施。在本研究中，我们分享了在适应过程、制定管理计划和建立基础设施方面的经验。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2020 Turkish National Software Engineering Symposium (UYMS)

自引率

0.00%

发文量