Skip to main content
SpringerLink
Log in
Book cover

European Conference on Software Quality

ECSQ 2002: Software Quality — ECSQ 2002 pp 146–155Cite as

Performing Initial Risk Assessments in Software Acquisition Projects

  • Conference paper
  • First Online:

Part of the book series: Lecture Notes in Computer Science ((LNCS,volume 2349))

Abstract

Managing the acquisition of large and complex software systems is a difficult task. Obviously, there are many sources for risks that may hazard the success of an acquisition project. In this paper we discuss a method for assessing a risk situation at a very early stage of a software (acquisition) project in a structured way. The method, called “FIRMA”, helps to identify risk areas. Based on a derived risk-profile, the method proposes adjustments to the risk management process and the overall acquisition process. The method was applied in several projects at DaimlerChrysler, Nokia and Novo Group. In this paper we describe first results of the validation of our method. First experiences have shown that FIRMA is not only a helpful instrument to collect initial risks, but also facilitates the introduction of formal risk management.

This is a preview of subscription content, log in via an institution.

Chapter
USD   29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD   39.99
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD   54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. Boehm, B., Tutorial: Software Risk Management, IEEE Computer Society Press, 1989.

    Google Scholar 

  2. Charette, R., Software Engineering Risk Analysis and Management, McGraw-Hill, New York, 1989.

    Google Scholar 

  3. Dorofee, A. J., Walker, J. A., Alberts, C. J., Higuera, R. P., Murray, T. J., & Williams, R. C., Continuous Risk Management Guidebook, Software Engineering Institute, Pittsburgh, PA, 1996.

    Google Scholar 

  4. Euromethod, http://www.fast.de/Euromethod/, 1996.

  5. Information Services Procurement Library, Managing Risks and Planning Deliveries, tenHagenStam, The Netherlands.

    Google Scholar 

  6. Jones, C., Assessment and Control of Software Risks, Yourdon Press Computing Series, 1994.

    Google Scholar 

  7. Kontio, J., Software Engineering Risk Management: A Method, Improvement Framework, and Empirical Evaluation, The Center for Excellence, Helsinki, Finland, 2001.

    Google Scholar 

  8. Lyytinen, K., A Source Based Questionnaire of Main Software Risks, Technical Report DaimlerChrysler, Ulm, Germany, 2000.

    Google Scholar 

  9. Lyytinen, K., Getto, G., Vullinghs, T., Success Factors for Managing Risk Management in Complex Software Projects, Technical Report DaimlerChrysler, Ulm, Germany, 2000.

    Google Scholar 

  10. McConnell, S., Rapdi Development, Microsoft Press, 1996.

    Google Scholar 

  11. Pitkänen, P. 1999, Project Risk Management Applications in Industry, Project Management Association Finland. Helsinki, Finland.

    Google Scholar 

  12. Software Engineering Institute. Software Acquisition Capability Maturity Model, Version 1.02, CMU/SEI-99-tr002, Jack Cooper and Metthew Fisher and S. Wayne Sherer editors, 2001.

    Google Scholar 

Download references

Author information

Authors and Affiliations

  1. R&D-Ware Oy, Rautakallionkatu 4 A 9, FIN-01360, Vantaa, Finland

    Esa Rosendahl

  2. DaimlerChrysler AG, Research and Technology, P.O. Box 2360, 89013, Ulm, Germany

    Ton Vullinghs

Authors
  1. Esa Rosendahl
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Ton Vullinghs
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Nokia Research Center, Nokia Group, Nokia Group, P. O. Box 407, 00045, Finland

    Jyrki Kontio

  2. Department of Computer and Information Science (IDI), Norwegian University of Science and Technology (NTNU), Gloeshaugen, 7491, Trondheim, Norway

    Reidar Conradi

Rights and permissions

Reprints and permissions

Copyright information

© 2002 Springer-Verlag Berlin Heidelberg

About this paper

Cite this paper

Rosendahl, E., Vullinghs, T. (2002). Performing Initial Risk Assessments in Software Acquisition Projects. In: Kontio, J., Conradi, R. (eds) Software Quality — ECSQ 2002. ECSQ 2002. Lecture Notes in Computer Science, vol 2349. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-47984-8_18

Download citation

  • DOI: https://doi.org/10.1007/3-540-47984-8_18

  • Published:

  • Publisher Name: Springer, Berlin, Heidelberg

  • Print ISBN: 978-3-540-43749-9

  • Online ISBN: 978-3-540-47984-0

  • eBook Packages: Springer Book Archive

Publish with us

Policies and ethics

Search

Navigation