Gestão de riscos em projetos de desenvolvimento de software com Scrum: um estudo de caso

Bruna Naira Milare; Claudio Luis Carvalho Larieira

doi:10.5585/gep.v10i3.11363

Authors

Bruna Naira Milare Instituto de Pesquisas Tecnológicas – IPT https://orcid.org/0000-0002-9091-656X
Claudio Luis Carvalho Larieira EAESP/FGV. https://orcid.org/0000-0001-7674-6093

DOI:

https://doi.org/10.5585/gep.v10i3.11363

Keywords:

Software Project, Risk Management, Scrum, Agile Methods.

Abstract

The software development projects are increasing the participation of agile methods, in special the framework Scrum, who is the most popular among them. As the other agile methods in general, the Scrum does not present a formal process for risk management. To identify how it is done, documents have been analyzed and interviews were conducted to professionals of four software development projects that use Scrum in a digital commerce company. After the analysis of the results, were identified that some of the risk management practices found on the literature are used on the context of the study. Between them, the most used were the existence of a risk answer plan, identification of risks at least among Sprint planning events and risk communication by the people involved on the project to the stakeholders. On the other hand, the risk mapping practices on the initial part of the project, risk prioritization and systematic and adequate methodology for risk management were not seen on the company that was studied. The practices were consolidated in a way to offer inputs to let other companies to analyze how the risk management is realized in their projects.

Author Biographies

Bruna Naira Milare, Instituto de Pesquisas Tecnológicas – IPT

Mestre, Instituto de Pesquisas Tecnológicas – IPT. São Paulo, SP – Brasil.

Claudio Luis Carvalho Larieira, EAESP/FGV.

Doutor em Administração, EAESP/FGV.
São Paulo, SP – Brasil.

References

Alharbi, E. T., & Qureshi, M. R. J. (2014). Implementation of risk management with SCRUM to achieve CMMI requirements. International Journal of Computer Network and Information Security, 6 (11), 20.

Amland, S. (2000). Risk-based testing: Risk analysis fundamentals and metrics for software testing including a financial application case study. Journal of Systems and Software, 53 (3), 287-295

Ancveire, I., Gailite, I., Gailite, M., & Grabis, J. (2015). Software Delivery Risk Management: Application of Bayesian Networks in Agile Software Development. Information Technology and Management Science, 18(1), 62-69.

Balaji, S., Murugayan, M. S. (2012). Waterfall Vs V-Model Vs Agile: A Comparative Study on SDLC. International Journal of Information Technology and Business Management 29th, 2(1), 26–30.

Barbosa, J. F., Farias Junior, I., Marczak, S., Santos, R. P., & Moura, H. (2014, September). Um Framework para Gestão de Riscos em Projetos de Desenvolvimento Distribuído de Software. VIII Workshop on Distributed Software Development, Software Ecosystems and Systems-of-Systems, Maceió, Alagoas, Brasil, 9.

Benbasat, I., Goldstein, D. K., & Mead, M. (1987). The case research strategy in studies of information systems. MIS quarterly, 369-386.

Conboy, K. (2009). Agility from first principles: Reconstructing the concept of agility in information systems development. Information Systems Research, 20(3), 329-354.

Oliveira, L. R., Gomes, G. S., & Lima, F. P. (2014). Análise de Riscos pelo Uso de Métodos Ágeis na Gestão de Projetos de Desenvolvimento de Software. Gestão e Projetos, 5(2), 90-101.

Fowler, M., & Highsmith, J. (2001). The Agile Manifesto. Software Development Magazine, 9, 28-35.

Garzás, J., & Paulk, M. C. (2013). A case study of software process improvement with CMMI-DEV and Scrum in Spanish companies. Journal of Software: Evolution and Process, 25 (12), 1325–1333.

Gold, B., & Vassell, C. (2015, November). Using risk management to balance agile methods: A study of the Scrum process. Knowledge-Based Engineering and Innovation (KBEI), Tehran, Iran

ISO - International Organization of Standardization. (2009). ISO 31000:2009: Gestão de Riscos – Princípios e diretrizes. Rio de Janeiro: ISO.

Kerzner, H. (2011). Gerenciamento de projetos: uma abordagem sistêmica para planejamento, programação e controle. São Paulo: Blücher.

Lee, G., & Xia, W. (2010). Toward agile: an integrated analysis of quantitative and qualitative field data on software development agility. MIS Quarterly, 34(1), 87-114

Monteiro, S. B. S., Rodrigues, C. K. D. S., Moraes, R. A., Rocha, J. G. D., & Branco, I. G. C. (2015, Novembro). Análise de riscos em desenvolvimento de software ágil: estudo de caso na Administração Pública Federal. XXII Simpósio de Engenharia de Produção (SIMPEP), Bauru, São Paulo, Brasil.

Neves, S. M., Silva, C. E. S., Salomon, V. A. P., da Silva, A. F., & Sotomonte, B. E. P. (2014). Risk management in software projects through knowledge management techniques: cases in Brazilian incubated technology-based firms. International Journal of Project Management, 32(1), 125-138.

OGC - Office of Government Commerce. (2009). Managing successful projects with PRINCE2. UK: The Stationery Office.

Petersen, K., & Wohlin, C. (2010). The effect of moving from a plan-driven to an incremental software development approach with agile practices. Empirical Software Engineering, 15(6), 654-693.

PMI - Project Management Institute. (2016). Guia do conhecimento em gerenciamento de projetos. 5a. edição. Campus Boulevar: Newtown Square. PMI.

Pressman, R. (2010). Software Engineering: A Practioner’s Approach. USA: International McGraw-Hill.

Rech, P. J. (2013). Gerenciamento de Riscos em projetos de desenvolvimento de software com Scrum. Dissertação de Mestrado, Pontifícia Universidade Católica do Rio Grande do Sul, Porto Alegre, RS, Brasil. Disponível: http://repositorio.pucrs.br/dspace/handle/10923/5602.

Sarker, S., & Sarker, S. (2009). Exploring agility in distributed information systems development teams: An interpretive study in an offshoring context. Information Systems Research, 20(3), 440-461.

Schwaber, K., & Sutherland, J. (2016). Um Guia Definitivo para o Scrum: As Regras do Jogo. USA: Scrum.org.

Serpella, A. F., Ferrada, X., Howard, R., & Rubio, L. (2014). Risk management in construction projects: a knowledge-based approach. Procedia-Social and Behavioral Sciences, 119, 653-662.

Siddique, L., & Hussein, B. A. (2014, June). Practical insight about risk management process in agile software projects in Norway. Technology Management Conference (ITMC). Chicago, IL, USA

Soares, S. M. (2004). Metodologias ágeis extreme programming e Scrum para o desenvolvimento de software. Revista Eletrônica de Sistemas de Informação, 3 (1).

Souza, E., Gusmao, C., Alves, K., Venancio, J., & Melo, R. (2009, March). Measurement and control for risk-based test cases and activities. Test Workshop (LATW’09), Búzios, RJ, Brasil

Takeuchi, H., & Nonaka, I. (1986). The New Product Development Game. Harvard Business Review, 137-146, jan.

Tavares, B. G., Silva, C. E. S., & Souza, A. D. (2017). Risk management analysis in Scrum software projects. International Transactions in Operational Research, 26 (5), 1884-1905.

Tomanek, M., & Juricek, J. (2015). Project risk management model based on PRINCE2 and SCRUM frameworks. International Journal of Software Engineering & Applications (IJSEA), 6 (1).

Van Waardenburg, G., & Van Vliet, H. (2013). When agile meets the enterprise. Information and software technology, 55(12), 2154-2171.

Verner, J. M., Brereton, O. P., Kitchenham, B. A., Turner, M., & Niazi, M. (2014). Risks and risk mitigation in global software development: A tertiary study. Information and Software Technology, 56(1), 54-78.

Versionone. (2017). 11Th Annual State of Agile Survey. Technical report, Version One.

Yin, R. (2013). Case Study Research: Design and Methods (Applied Social Research Methods). Thousand Oaks: SAGE Publications Inc.