Forums for the Business Analyst

 
  Modern Analyst Forums  Business and Sy...  Structured Anal...  Risk Management - Opinions on best practice
Previous Previous
 
Next Next
New Post 10/8/2010 9:55 AM
Unresolved
User is offline Gareth
3 posts
No Ranking


Risk Management - Opinions on best practice 

Hello all,

I will offer up an apology right off the bat, just in case I am posting this in the incorrect catagorie.

I am an entry level BA with coming up to 2 years experience.
As part of my development, I have been tasked with conducting a review of our change delivery teams approach to risk management.

I have already engaged other members of our internal change community to understand peoples perspective on the pros and cons to our approach and am happy to share these details with anyone that's interested.
What I am looking to do now Is build an understanding of other peoples approach to risk management, the pros and cons that their method carries and opinions on what they consider to be best practice.

In the interest of declaring my big requirements up front (and at the risk of die hard Agile fans already clickinging away from this thread):
- When I say risks, I am actualy talking about RAID management.
- I am less interested in the software used to support RAID management as this element of our process is (all but defiantly) out of scope of my review.
- The scope of RAID management I would like to look at is the entire time line from identification to conclusion of a RAID item.

Thanks in advance for your time and any help you may be able to offer.

 
New Post 10/8/2010 12:42 PM
User is offline David Wright
141 posts
www.iag.biz
7th Level Poster




Re: Risk Management - Opinions on best practice 

 

Gareth,

Define RAID.... that would help me, anyway....


David Wright
 
New Post 10/8/2010 7:57 PM
User is offline Gareth
3 posts
No Ranking


Re: Risk Management - Opinions on best practice 

Hi David,

I forget that acronyms aren't universal.

RAID is Risks, Assumptions, Issues & Dependancies, and in context of my question, from a project/programme management point of view.

 
New Post 10/8/2010 11:09 PM
User is offline Kimbo
456 posts
5th Level Poster


Re: Risk Management - Opinions on best practice 

 Hi Gareth,

I think its important when delivering a BRD to consider and include a section on all 4 of these. Be careful to only include those that are specific requirements risks, etc. There is a danger that the project may use the BRD as a repository for the project risks / issues (should be a separate risk / issue register for them managed by the PM). An example of a risk / issue not to include is that developer resources may not be available to deliver on time.

Comment about each:

Risk - should always include a mitigation for each risk. This shows that you have not only recognised there is a risk but have taken action to mitigate that risk.

Assumptions - very important to include the assumptions you have made when preparing the requirements. So if any of the assumptions prove to be wrong you can revisit your requirements accordingly

Issues - actually thinking about it, I probably put risks and issues in the same group and include a mitigation for both

Dependencies - include things like other dependent projects e.g. if your project depends on functionality delivered by another project then include it here. Plus if some of your requirements depend on the delivery of some others, include that as well.

As a BA you may be moved off the project once you've delivered your document, so you may not get the chance to follow through on what you have identified. The Risks / issues and dependencies should be included in project registers and tracked by the PM. Assumptions probably just apply to your document and once the document is signed off by the business probably don't need to be tracked further.

Kimbo

 
New Post 10/9/2010 12:27 PM
User is offline Gareth
3 posts
No Ranking


Re: Risk Management - Opinions on best practice 

Hi Kimbo,

Thanks for your input, our standard BRD template has a section for referencing RAID items that have been added in the central register.  I have always wondered if this approach results in stakeholders signing off the BRD without fulling understanding the assosiated RAID items (do they actualy visit the register when reviewing the document or do they assume that because it has been logged, its all in hand?).

Where our process falls down (in my opinion) is once the Risk/Assumption/Issue/Dependancy has been logged, the formal process is over, no socialisation, sign off or regular review happens with the exception of in the project control board that may be well attended at the start of a project but not so well as the project matures.

As I have read this post back to myself, I think I may have stumbled on one root casue.

 
Previous Previous
 
Next Next
  Modern Analyst Forums  Business and Sy...  Structured Anal...  Risk Management - Opinions on best practice

Community Blog - Latest Posts

Business Impact Analysis(BIA): Assessing the Potential Impact of a Cybersecurity Incident on Business Operations
In today’s highly interconnected society, businesses depend on technology even more than before. While offering opportunities for innovation and creativity, businesses are exposed to various cybersecurity threats that can disrupt operations, damage reputation, and result in substantial financial losses. It is crucial to carry out a comprehens...
In today's ever-evolving market, businesses must adapt swiftly to remain competitive and meet the needs of a fast-paced digital economy. Among the various business strategies available, digital transformation, customer-centricity, and sustainability have emerged as top priorities. Let’s explore why these strategies are critical for busine...
The Cisco Certified Network Associate (CCNA) certification is a pivotal credential for networking professionals, validating your skills in networking fundamentals, security, automation, and programmability. Preparing for the CCNA exam can be challenging, but with the right strategy, resources, and mindset, you can successfully achieve this certific...

 



Upcoming Live Webinars




 

Copyright 2006-2024 by Modern Analyst Media LLC