SW Risk Management Process

Overview .

This document shall be used by Software Project Managers on the projects to establish a common or standard approach to software risk management in line with the requirements of ISO/IEC 12207/MIL-STD-498. This document contains information on a common understanding of software risk management, the related roles, and responsibilities of the organization, technical groups, and project management. SMG has the responsibility for this document and shall update it as required to meet the needs of users within the projects. SMG welcomes and solicits feedback from users of this document so that future revisions of this document shall reflect improvements based on organizational experience and lessons learned.

Software typically presents a significant source of any programme and/or project risk. Risk management is used to reduce or control individual drivers of risk, and often includes some combination of avoidance, control, prevention, assumption (accept the risk), and transfer (from one phase of the development life cycle or iteration to another).

ISO/IEC 12207/MIL-STD-498 standards define the requirements for the developer and subcontractor's risk management activities and only address the software element of the overall risk management programme.

This document shall be used in conjunction with the overall 'Risk Management' as defined in the "Organizational Programme Management Plan" and policy.

If you have any questions or comments regarding this document please feel free to communicate them via the Document Change Request (DCR) form located at the back of this document.

Back to Home page MANAGING STANDARDS Home page

Please send any beneficial comments or identification of errors using the following form to: kenr@wysywig.airtime.co.uk