Risk Mitigation and Monitoring Challenges in Software Organizations: A Morphological Analysis
Article Sidebar
Main Article Content
Abstract
Context: The present body of research on risk mitigation focuses mostly on sparse and dispersed research using various approaches during project development.
Objectives: This paper's goals are to conceptualize and construct a morphological analysis (MA) framework, examine the literature that has already been published on these risks and how to mitigate them in software development, and identify research gaps that suggest areas for further study.
Methods: Based on a survey of 102 works, we provide an MA framework. The MA framework, which is composed of five dimensions and 17 variants, identifies 33 distinct research gaps as the maximum number of potential areas for future study. The implications for future research are covered in the paper's conclusion. Risk reduction during the project development process is extremely beneficial for project managers at an organization in delivering high-quality goods on time and within budget.
Results: Based on a review of the literature, it was discovered that the development of software projects used a very low percentage of official risk mitigation and elimination methods. Research also revealed the significance of people-related risks in the risk mitigation process for the benefit of the organization. Some key research demonstrated experimentation, case studies, and empirical approaches for evaluation. Future work may include examining project managers' perceptions and knowledge of risk management. Managers of software development teams require greater risk-mitigation strategies.
Conclusion: Scholars and researchers need to put more effort into developing quantitative and intelligent risk models. It is crucial to identify major risks so that they won't compromise the project's future success. In our future work, we can employ more models that are helpful for combining quantitative and intelligent risk models using various AI strategies to reduce hazards.
Article Details
References
Hasib, N., Rizvi, S.W.A. & Katiyar, V. , “Artificial Immune System: A Systematic Literature Review,” Journal of Theoretical and Applied Information Technology, Little Lion Scientific, ISSN: 1992-8645, 101(4), 2023, 1469-1486, www.scopus.com
Dhlamini, John & Nhamu, Isaai & Kaihepa, “Intelligent risk management tools for software development”, 2009, 33-40. 10.1145/1562741.1562745.
Elzamly, Abdelrafe & Hussin, Burairah, “An enhancement of framework software risk management methodology for successful software development”, Journal of Theoretical and Applied Information Technology, Little Lion Scientific , 62, 2014, 410-423.
Firdose, Salma & Rao, Manjunatha Rao., “PORM: Predictive Optimization of Risk Management to Control Uncertainty Problems in Software Engineering”. International Journal of Electrical and Computer Engineering (IJECE), 8. 4735. , 2018.
Mofleh, Halima & Zahary, Ammar., “A framework for software product risk management based on quality attributes and operational life cycle (SPRMQ)”. Corpus ID: 168187690, 2011.
Haneen Hijazi, Thair Khdour and Abdulsalam Alarabeyyat, “A Review of Risk Management in Different Software Development Methodologies”,International Journal of Computer Applications, 45(7):8-12, May 2012
Bazaz, Yogini et al. “Comparative study of risk assessment models corresponding to risk elements.” IEEE-International Conference On Advances In Engineering, Science And Management (ICAESM -2012) (2012): 61-66.
Vishal Sharma, Priyanka Yadav, Priti Yadav, “ Risk Study of various Software Development Methodologies. International Journal of Advanced Technology in Engineering and Science,” Volume No.02, Special Issue No. 01, September 2014, ISSN (online): 2348 – 7550
Sim Segal, “ Risk Management”, Society of actuaries, Issue 8, 2006.
Haghnevis, Moeed & Sajedi, H. , “ A Model for Assessment of Project Management Risk Models,” 4rth International Management Conference, 2006
Chawan, Pramila & Patil, Jijnasa & Naik, Radhika, “ Software Risk Management,” International Journal of Computers & Technology. 6. 60-66, 2013.
Kimer, T.G., Con§alves, L.E., “Software Risk Management: A Process Model and a tool,” International Federation for Information Processing, Volume 227, (Boston: Springer), pp. 149-154, 2006.
Pandey, Abhishek Kumar and Singh, Brijesh Kumar and Srivastava, Prashant, “Risk Analysis in Software Process Models,” Proceedings of 2nd International Conference on Advanced Computing and Software Engineering, http://dx.doi.org/10.2139/ssrn.3351057, 2019
Li, Minglu & Li, Jianping & Song, Hao & Wu, Dengsheng, “Risk Management in the Trustworthy Software Process: A Novel Risk and Trustworthiness Measurement Model Framework,” NCM 2009 - 5th International Joint Conference on INC, IMS, and IDC. 214-219. 10.1109/NCM.2009.283, 2009
Mousaei, Mahdi & Javdani Gandomani, Taghi, “A New Project Risk Management Model based on Scrum Framework and Prince2 Methodology,” International Journal of Advanced Computer Science and Applications. 9. 10.14569/IJACSA.2018.090461.,2018.
Tiganoaia, Bogdan & Niculescu, Andrei & Negoita, Olivia & Popescu, Mirona, “A New Sustainable Model for Risk Management—RiMM,” Sustainability. 11. 1178. 10.3390/su11041178. , 2019.
Chaouch, Syrine & MEJRI, Asma & Ghannouchi, Sonia., “A framework for risk management in Scrum development process,” Procedia Computer Science. 164. 187-192. 10.1016/j.procs.2019.12.171. , 2019.
Husin, Wan & Yahya, Yazriwati & Mohd Azmi, Nurulhuda 6& Sjarif, Nilam & Chuprat, Suriayati & Azmi, Azri., " Risk Management Framework for Distributed Software Team: A Case Study of Telecommunication Company. Procedia Computer Science. 161. 178-186. 10.1016/j.procs.2019.11.113. , 2019.
Abdullah, S.F. & Yusof, Maryati & Jambari, Dian., “Risk management model for information systems planning in public sector,” Journal Pengurusan. 48.,2016.
Khdour, Thair, “A Framework for Integrating Risk Management into the Software Development Process,” Research Journal of Applied Sciences, Engineering and Technology. 8. 919-928. ,2014.
Khdour, Thair & Hijazi, Haneen., “A Step Towards Preventive Risk Management in Software Projects, ”,2012.
Kumar, Gaurav & Bhatia, Pradeep., “Comparative Analysis of Software Engineering Models from Traditional to Modern Methodologies,” International Conference on Advanced Computing and Communication Technologies, 10.1109/ACCT.2014.73., 2014.
Esteki, Mohammad & Javdani Gandomani, Taghi & Farsani, Hadi., “A Risk Management Framework for Distributed Scrum using PRINCE2 Methodology,” 9. 1299-1310. 10.11591/eei. v9i3.1905. , 2020.
Mahatha, Mona., “Software Development Risk Assessment: A multi-dimensional, Quantitative & Continuous approach,” 2015.
Roy, Bibhash & Dasgupta, Ranjan., “A Study on Software Risk Management Strategies and Mapping with SDLC,”10.1007/978-81-322-2653-6_9., 2015.
Shahzad, Basit & Al-Ohali, Yousef & Abdullah, Azween., “Trivial model for mitigation of risks in software development life cycle,” International Journal of the Physical Sciences, 6. 2072-2082. ,2011.
Mofleh, Halima & Zahary, Ammar., “A Framework for Software Product Risk Management Based on Quality Attributes and Operational Life Cycle (SPRMQ),” 2011.
Project risk analysis model.Users guide, strategic analysis and estimation office, Washington State Department of Transformation.,2018.
Guidelines for Risk Management. ABN AMRO Bank N.V., ProjectAanpak BUNL - ICT Projecten, version 1.6, 2003
Risk management in project development, Project learning academy, edx
Five key mitigation strategies, Indeed editorial team, 2020.
Linda Westfall. The Westfall team. , 2001.
Raza, Engr.Farah., “Artificial Intelligence Techniques in Software Engineering (AITSE),” Lecture Notes in Engineering and Computer Science. 2174., 2009.
Hijazi, Haneen & Alqrainy, Shihadeh & Muaidi, Hasan & Khdour, Thair., “Risk Factors in Software Development Phases,” European Scientific Journal. 10. 213-231. ,2014.
Understanding Risk Management in Software Development: 7 Common Risks, Door3
Menezes Júnior, Júlio & Gusmao, Cristine & Moura, Hermano., “Risk factors in software development projects: a systematic literature review,” Software Quality Journal. 27. 10.1007/s11219-018-9427-5. ,2019.
Baccarini, David & Salm, Geoff., “Management of risks in information technology projects,” Industrial Management and Data Systems, 104. 286-295. 10.1108/02635570410530702., 2004.
Alshehab, Abdullah & Alfozan, Thalaya & Gadelrab, Hesham., “ Most severe risk factors in software development projects in Kuwait,” Indonesian Journal of Electrical Engineering and Computer Science, 21. 591. 10.11591/ijeecs. v21.i1. pp591-600., 2021.
Anderson, William., “Risk Category 3 or 4?,” IEEE Transactions on Industry Applications - IEEE TRANS IND APPL. 46. 1-6. 10.1109/ICPS.2008.4606275., 2008.
Five steps for better risk assessments, LogicManager, Inc
Lucy Brown, Top 8 risk management tools and techniques.,2021.
Chuk Yau, "A quantitative methodology for software risk control," Proceedings of IEEE International Conference on Systems, Man and Cybernetics, San Antonio, TX, USA, pp. 2015-2020 vol.2, doi: 10.1109/ICSMC.1994.400148.,1994.
Eom, Jung-Ho & Choi, Young-Hyun & Park, Seon-Ho & Chung, Tai-Myoung., “Qualitative initial risk analysis for selecting risk analysis approach suitable for IT security policy,” 669-673. 10.1109/ICITIS.2010.5689486. ,2010.
Ginny Edwards. Overview of Project Risk Quantification., 2010.
Xiaosong, Li & Shushi, Liu & Wenjun, Cai & Songjiang, Feng., “The Application of Risk Matrix to Software Project Risk Management,” Proceedings - 2009 International Forum on Information Technology and Applications, IFITA 2009. 2. 480 - 483. 10.1109/IFITA.2009.542., 2009.
Ojala, Pasi., “Experiences of risk enhanced value assessment in a software company,” 121 - 125., 2009.
A. Aslam et al., "Decision Support System for Risk Assessment and Management Strategies in Distributed Software Development," in IEEE Access, vol. 5, pp. 20349-20373, doi: 10.1109/ACCESS.2017.2757605., 2017.
Elzamly, Abdelrafe & Hussin, Burairah., “Evaluation of Quantitative and Mining Techniques for Reducing Software Maintenance Risks,” Applied Mathematical Sciences. 8. 5533-5542. 10.12988/ams.2014.43206. , 2014.
Rafeek, M.A. & Arbain, Adila & Sudarmilah, Endah., “ Risk mitigation techniques in agile development processes,” International Journal of Supply Chain Management. 8. 1123-1129. ,2019.
Bhujang, Raghavi & Suma, V., “ Graphical Visualization of Risk Assessment for Effective Risk Management during Software Development Process,” 2012.
Ferson, Scott., “Bayesian Methods in Risk Assessment,” 2005.
Ghoneim, G.A. & Sigurdsson, Gudfinnur., “Fundamentals of risk based inspection — a practical approach,” 1 - 9. 10.23919/OCEANS.2009.5422330.,2009.
Elzamly, Abdelrafe & Hussin, Burairah., “Quantitative and Intelligent Risk Models in Risk Management for Constructing Software Development Projects: A Review,” International Journal of Software Engineering and its Applications, 10. 9-20. 10.14257/ijseia.2016.10.2.02. ,2016.
Irfandhi, Kornelius., “Risk Management in Information Technology Project: An Empirical Study,” ComTech Journal, 7. 191-199. 10.21512/comtech. v7i3.2498. ,2016.
Felderer, Michael & Auer, Florian & Bergsmann, Johannes. , “Risk Management During Software Development: Results of a Survey in Software Houses from Germany, Austria and Switzerland,”143-155.10.1007/978-3-319-57858-3_11. ,2017.
Henri, Evans., “A Review of Risk Management in Different Software Development Methodologies,” International Journal of Computer Applications (0975 – 8887), Volume 45– No.7, May 2012., 2020.
Hijazi, Haneen & Khdour, Thair & Alarabeyyat, Abdulsalam., “A Review of Risk Management in Different Software Development Methodologies,” International Journal of Computer Applications, 45. 8-12.,2012.
B?k, Sylwia., “The Embedment of Risk Management in Enterprise Management System,” International Journal of Contemporary Management, 59. 10.2478/ijcm-2022-0014.,2022.
Ahmed, R., “Risk Mitigation Strategies in Innovative Projects,” InTech. doi: 10.5772/intechopen.69004.,2017.
Neves, S.M., & Silva, C.E., “Risk management applied to software development projects in incubated technology-based companies: literature review, classification, and analysis,” Gest. Prod., São Carlos, v. 23, n. 4, p. 798-814, 2016 http://dx.doi.org/10.1590/0104-530X472-15, 2016.
Aven, Terje., “Risk assessment and risk management: Review of recent advances on their foundation,” European Journal of Operational Research, 253. 10.1016/j.ejor.2015.12.023. Volume 253, Issue 1, ISSN 0377-2217, Pages 1-13, 2015.
Teklemariam, Mihret & Mnkandla, Ernest., “ Software Project Risk Management Practice in Ethiopia,” The Electronic Journal of Information Systems in developing Countries, 79. 10.1002/j.1681-4835. 2017.tb00583. x., 2017.
Addison, Tom & Vallabh, Seema. “ Controlling Software Project Risks—an Empirical Study of Methods Used by Experienced Project Managers,” Proceedings of SAICSIT. 128-140. 2002.
Al Hilali, Raqiya & Sudevan, Smiju., “Software Project Risk Management Practice in Oman,” International Journal of Electrical, Electronics and Computers. 5. 32-47. 10.22161/eec.563., 2020.
Basit Shahzad, Sara Afzal Safvi., “ Effective risk mitigation: a user prospective,” International journal of mathematics and computers in simulation. Issue 1, Volume 2, 70-80, 2008.
Kajko-Mattsson, Mira & Lundholm, Jan & Norrby, Jonas., “Insight into Risk Management in Five Software Organizations,” 321 - 326. 10.1109/SEAA.2009.79. , 2009.
Shah, Unnati & Jinwala, Devesh & Patel, Sankita., “An Excursion to Software Development Life Cycle Models: An Old to Ever-growing Models,” ACM Transactions on Software Engineering and Methodology. 41. 1-6. 10.1145/2853073.2853080., 2016.
Banerjee, Arpita & Banerjee, C. & Poonia, Ajeet., “ Recent Advances in Risk Analysis and Management (RAM),” International Journal of Advanced Computer Technology, 3. 1412-1416., 2014.
Masso Daza, Jhon & Pino, Francisco & Calvache, César & Garcia, Felix & Piattini, Mario., “ Risk management in the software life cycle: A systematic literature review,” Computer Standards & Interfaces, 10.1016/j.csi.2020.103431. Volume 71, ISSN 0920-5489., 2020.
Valério, Karollay & Silva, Carlos & Neves, Sandra., “Risk Management in Software Development Projects: Systematic Review of the State of the art Literature,” International Journal of Open Source Software and Processes, 11. 1-22. 10.4018/IJOSSP.2020010101., 2020.
Baccarini, David & Salm, Geoff., “ Management of risks in information technology projects,” Industrial Management and Data Systems. 104. 286-295. 10.1108/02635570410530702., 2004.
Islam, Shareeful., “Software Development Risk Management Model – a goal-driven approach,” 10.1145/1595782.1595785., 2011.
Duong, L., “Effective Risk Management Strategies for Small-Medium Enterprises and Micro Companies: A case study for Viope Solutions Ltd.,” Arcada, Degree Thesis, International business, 2009.
Williams, R.C., “ Software risk evaluation (SRE) method description (version 2.0)”. CTIT technical reports series, 1999.
Antinyan, Vard., “ Empowering Technical Risk Assessment in Software Development,” 10.13140/RG.2.2.31879.04004., 2015.
Devagya Muchhal ., “A study of risk management in software development projects” A Thesis. Institute of Management and Research, 2012.
Roja banu, MS., “ An analysis of the development of rmmp by focusing risk evaluation and continuous mitigation plan for unlike risks,” A thesis. Madurai Kamraj University, dept of Computer Science, 2013.
Khan, Raof Ahmad., “Risk mitigation in product life cycle design,” A thesis. School of Mechanical Engineering. Shri Mata Vaishno Devi University, 2018.
Nadana sundaram, PV., “A framework for software project risk management through case tools,” Department of English Language Studies, Madurai Kamraj University, 2015.
Shikha Gupta., “An Artificial Intelligence Based Framework for Risk Management of it Systems,” A Thesis. Teerthanker Mahaveer University Moradabad, 2018.
Antinyan, Vard & Maniotis, Spyridon, “Monitoring Risks in Large Software Development Programs an Experience Report from Ericsson”, 2017.
Flouris, T.G., & Y?lmaz, A.K., “The Risk Management Framework to Strategic Human Resource Management,” International Research Journal of Finance and Economics. ISSN 1450-2887, Issue 36 , 2010.
P, Dr.Arunprasad & Tj, Kamalanabhan.,“Human resource excellence in software industry in India: an exploratory study,” International Journal of Logistics Economics and Globalisation. 2. 316-330. 10.1504/IJLEG.2010.037519., 2010.
HR Risk Management – Top 8 Sources of Human Resource Risk, By Tread Stone Risk Management, 2021
Chiang, Hui & Lin, Bertrand., “A Decision Model for Human Resource Allocation in Project Management of Software Development,” IEEE Access. PP. 1-1. 10.1109/ACCESS.2020.2975829., 2020.
HR Risk Management: A Practitioner’s Guide. By Andrea Boatman
Kermani, Ameneh & Beheshtifar, Malikeh & Montazery, Mohammad & Arabpour, Alireza., “ Human Resource Risk Management Framework and Factors Influencing It,” PropósitosyRepresentaciones, 9.10.20511/pyr2021.v9nSPE1.902., 2021.
Mitrofanova, Alexandra & Konovalova, Valeriya & Mitrofanova, Elena & Ashurbekov, Rafik & Konstantin, Trubitsyn., “Human resource risk management in an organization: methodological aspect”, 10.2991/ttiess-17.2017.114. , 2017.
Rodgers, Waymond & Murray, James & Stefanidis, Abraham & Degbey, William Y. & Tarba, Shlomo, “An artificial intelligence algorithmic approach to ethical decision-making in human resource management processes” Human Resource Management Review, ISSN 1053-4822. 33. 100925. 10.1016/j.hrmr.2022.100925. , 2022.
Popescu, Sorin & Santa, Roxana & Teleaba, Florian & Ilesan, Hannelore, “ A structured framework for identifying risks sources related to human resources in a 4.0 working environment perspective,” Human Systems Management. 39. 511-527. 10.3233/HSM-201034., 2020.
Hemalatha, S. ., Tamilselvi, T. ., Kumar, R. S. ., Julaiha M. E, A. G. N. ., Thangamani, M. ., Lakshmi , S. ., & Gulati, K. . (2023). Assistive Tools for Machine Communication for Preventing Children and Disabled Persons from Electric Hazard Using Cyber Physical System. International Journal of Intelligent Systems and Applications in Engineering, 11(3s), 155–160. Retrieved from https://ijisae.org/index.php/IJISAE/article/view/2554
Heneman, R. L., Tansky, J. W., & Camp, S. M., “ Human Resource Management Practices in Small and Medium-Sized Enterprises: Unanswered Questions and Future Research Perspectives,” Entrepreneurship Theory and Practice, 25(1), 11–26. https://doi.org/10.1177/104225870002500103, 2000.
Mahmood, Razhan, “ Importance of Human Resources for Development of Employees, “ 2022.
Zhu, Hong., “Research on Human Resource Recommendation Algorithm Based on Machine Learning,” Scientific Programming. 2021. 1-10. 10.1155/2021/8387277.
Nirmala Sumithra.,“A study on human resource development climate at select software companies in Bengaluru city,”A thesis, Karpagam University,2018.
Charles J., “ Analysing the Risk Factors in Human Resource Allocation for Secure Software Development,” A thesis. Noorul Islam Centre for Higher Education, 2017.
Baliga, Ashwin & Chawla, Vaibhav & Sunder M, Vijaya & Ganesh, L. S. & Sivakumaran, Bharadhwaj, “ Service Failure and Recovery in B2B Markets -A Morphological Analysis,” Journal of Business Research. 131. 10.1016/j.jbusres.2020.09.025., 2020.
Sunder M, V., Ganesh, L. S., & Marathe, R. R., “A morphological analysis of research literature on Lean Six Sigma for services,” International Journal of Operations & Production Management, 38(1), 149-182, 2018.
Goel, A., Ganesh, L. S., & Kaur, A., “Sustainability integration in the management of construction projects: A morphological analysis of over two decades’ research literature,” Journal of Cleaner Production, 236, Article 117676., 2019.
Sunder, M. V., Ganesh, L. S., & Marathe, R. R., “ Dynamic capabilities: A morphological analysis framework and agenda for future research,” European Business Review, 31(1), 25–63, 2019.
Ritchey, T., “Wicked problems–social messes: Decision support modelling with morphological analysis,” Springer Science & Business Media, 2011.
Lategan, Neil., “Towards enterprise information risk management – a body analogy,” Computer Fraud & Security, 2006, 15-19. 10.1016/S1361-3723(06)70453-5.
Flouris, Triant & Yilmaz, Ay?e, “The Risk Management Framework to Strategic Human Resource Management” International Research Journal of Finance and Economics, ISSN 1450-2887, Issue 36, 2010.