CH05. L06. Project and product risk

00:04

Project & Product Risk

00:06

In this video, we will talk about one topic

00:08

called "Risk". Without explaining

00:10

what is risk? Any event which is

00:12

unexpected to happen.

00:14

In case it happened

00:16

what is its level?

00:18

It can be identified according to

00:20

the probability of the adverse event

00:22

or the impact which is caused by this event.

00:24

Before discussing this part,

00:26

we need to remember

00:28

what was the objective of testing?

00:30

The main objective of course is to find defects and decrease risks,

00:34

and to say when we need to start testing process

00:36

when we need to continue

00:38

and when to stop.

00:40

In this part, we'll talk about risk

00:42

and that we can divide it into

00:44

two sections:

00:46

Either I am still working on the project

00:48

and not finished, and we call it

00:50

"the project risk"

00:52

or the project was deployed and

00:54

became a product, and therefor we will call it

00:56

"the product risk". Let's see which factors

00:58

we will find in both of them.

01:00

The project risk is all the risks around the project

01:04

which affect capability to deliver objectives.

01:08

They are 3 factors:

01:10

Organizational- Technical- Supplier.

01:12

The first one is Organization factor.

01:16

We may find shortage of skills

01:18

or training that the team needs

01:22

or a shortage of stuff.

01:24

Also, there may be personal issues

01:26

between members of the team, and this,

01:28

of course, will affect our project negatively.

01:30

There are also the political issues

01:32

e.g. if the testers have a problem with

01:34

communicating to their needs and test result.

01:38

There may be also a team failure

01:40

to follow up on the information they found

01:44

in the testing and reviews.

01:46

For example, they don't try to

01:48

improve the development and test practice.

01:50

There is a very important issue happens

01:52

in the organization which is

01:54

disrespect or improper attitude

01:56

towards the efforts of the test team.

02:00

These are most of the organization factors

02:02

that can put our project at risk.

02:04

So, what are the technical issues?

02:06

It is to take incorrect requirement

02:08

or not being able to meet the requirements because of

02:12

some existing constrains.

02:14

Another example: the test environment

02:16

may not be ready at the beginning

02:18

of testing. Moreover,

02:20

if you are working on an application and

02:22

you were merging data from a platform to another.

02:24

then this data had late conversion

02:26

or when migration planning and development

02:30

have technical issue. In addition,

02:32

you may have design, code,

02:34

configuration data,

02:36

test data and test of low quality .

02:38

The third category is

02:40

the supplier issues like:

02:42

If I get the components from outside

02:46

or If I work with a tool which

02:48

is no longer used, I don't have anyone that can teach me

02:50

how to use it. and when it has a problem

02:52

I can't find any technical support.

02:54

so any third party that I get

02:56

from another company, has some

02:58

issues, and when I get back to the company

03:00

I got it from, I don't find any support.

03:02

Of course, this will stop my work

03:04

and cause many problems.

03:06

So, who is the responsible for solving these problems.

03:08

Solving all these problems is the responsibility

03:10

of the test manager. He should has

03:12

high project management skills

03:14

to be able to analyze,

03:16

manage and mitigate all risks.

03:20

At the end of the project and according to IEEE standards,

03:22

as we previously mentioned, the test manager

03:24

should mention in the summary report

03:26

what the test plans requires are

03:28

and what the contingencies are.

03:30

Now we've finished the risks that threats

03:32

the project. what about the risks that

03:34

threats the product!

03:36

After finishing the project deployment,

03:38

there are many other factors for which

03:40

we as testers are responsible,

03:42

for this product to pass or fail

03:44

or to have risks. For example:

03:46

potential failure areas,

03:48

these are the adverse future events or hazards.

03:52

here we are talking about the quality of the product,

03:54

whether during the software delivery

03:56

or also software or hardware.

03:58

This can cause problems to the company

04:00

or the individuals.

04:02

The software also may be produced with

04:04

poor characteristics, whether in

04:06

functionality, reliability, usability or performance.

04:10

we may have poor data integrity & quality

04:12

Such problems will be clear

04:14

in data migration, data conversion ,

04:16

and data transport problem

04:18

in addition to violating data standards.

04:20

Finally, we may face the worst which is that

04:24

if our software didn't achieve the intended action,

04:26

which was required.

04:28

this means that the software didn't

04:30

achieve the objective for which it was made.

04:32

so, here, we use the risk to

04:34

identify where to start testing ,

04:36

and where to test more.

04:38

Therefore,

04:40

testing reduces the risks of

04:42

the adverse effect or it decreases

04:44

the impact of adverse effect.

04:46

Let's talk about

04:48

the product risk and its responsibility

04:50

towards the project success.

04:52

Does every time we conduct testing,

04:54

the risks increased or decreased?

04:56

Of course, they should decreased.

04:58

as while I am testing

05:00

I should give feedback all the time.

05:02

so whenever problems appear

05:04

they will be reduced in our product.

05:06

At the end, according to the risk based

05:08

approach we previously mentioned

05:10

we've said that we should be either

05:12

proactive or reactive.

05:14

As it is a risk, and it still will happen

05:16

so will you deal with it as proactive or reactive?

05:21

Ofcourse, proactive.

05:22

So the risk based approach you chose to

05:24

use is a proactive opportunity to

05:26

reduce the product risk level,

05:28

starting from the initial stage of a project.

05:31

one of the tasks that affects the choice of

05:34

the approach we will use is,

05:36

the identification of product risks.

05:38

what is this?

05:40

This is the first stag of risk management.

05:42

so it has to be considered

05:44

during the test planning and

05:46

control, specification,

05:48

preparation and execution of test.

05:50

If it wasn't considered

05:52

and we didn't confirm that

05:54

we've known the risks very well

05:56

and we have covered all the possibilities from

05:58

the beginning, so the risk management

06:00

effectiveness will not have an

06:02

effective role in handling

06:04

those kinds of risks.

06:06

what does it determine?

06:08

It determines which parts can

06:10

cause bugs and form a product risk

06:12

in addition to prioritizing the important

06:14

parts to find suitable solutions.

06:16

Then we should implement actions

06:18

to deal with these risks

06:20

In order to reduce the percentage

06:22

of the product failure.

06:24

One of the advantages of

06:26

the risk identification that by doing it

06:28

I will be able to identify 4 important things:

06:30

-the test techniques which I need

06:32

to apply during testing.

06:34

-the extant of testing which will be done.

06:36

-Prioritizing the tests

06:38

and this allows us to find

06:40

the critical defects as early as possible.

06:42

-the non-testing activities could be employed

06:46

to reduce risks, but how?

06:48

e.g. if we need the working team

06:50

to have a training course, this is not related

06:52

to the testing activities in the project.

06:54

but it may affect its quality.

06:56

we've discussed the risk based approaches

06:58

and we should have risk identification

07:00

from the beginning.

07:02

The last point is

07:04

the risk based testing. this one cares

07:06

that all the stakeholders

07:08

should be aware of all the expected risks.

07:10

and what is the required testing

07:12

that we can relay on in order to

07:14

face the risks. All what we've discussed

07:16

starting from: risk management and

07:18

control activities, risk based approach,

07:20

identification of product testing,

07:22

and the risk based testing,

07:24

their focus is on

07:26

how to find out risks

07:28

that may happen.

07:30

and you should have some ways

07:32

and solutions to face this type of problems

07:34

in order to reduce the uncertainty about risks.