cognizant 20-20 insights
In this whitepaper, we spell out our rigorousprocess for identifying and avoiding project issuesthat undermine many applications developmentprojects. It also offers proven ways for organiza-tions to minimize development delays and costs,while building systems that deliver exceptionalbusiness benets.
Test Risk Assessment Process
Cognizant Business Consulting developed astructured, proprietary process called the TestRisk Assessment for Project Improvement(TeRAPI), with the main objective of identifyingand minimizing risks that can occur at the testingstage across the entire product lifecycle.The process consists of three main phases:1.Measure the business criticality.2.Prole the risk level of projects.3.Design a risk mitigation plan.The purpose of measuring business criticality isto determine the importance of each businessfunction. After all the business processes areevaluated to determine their criticality to theproject, business functions can be prioritized todetermine which ones require a contingency planand which can be ignored and eliminated.Each function, system, interface and third partycan and should receive a risk rating. Probabili-ties are assigned to each failure that can occurfor each of these items. This means that anorder function (risk rating = 5) could be impairedbecause of a business partner failure (probabilityof 60%) or could fail due to a system failure (prob-ability of 20%). The same function would have adifferent criticality/probability score (see below),based on the fact that two different failures couldhit that business function.The business criticality evaluation process isstrictly related to the risk management processand is useful for any project stakeholder, at anyproject stage.
Measuring Business Criticality
To be successful, any test risk assessment hasto concentrate on the local identiable issuesrelated to the business. During the test riskassessment process, risks to business functionswill be identied and evaluated. The vulnerabil-ity of the business to these risks will be rated.Main actions to perform in a test risk assessmentinclude:
Alignment of testing with businessrequirements.
Test strategy and test environmentpreparation.
Production readiness preparation.
Project Costs Increase at Testing Stage
Late DefectDiscovery Results inSignificant ReworkDefectPreventionNew
R a t e o f C o s t I n v e s t m e n t D u r i n g P r o j e c t e d L i f e c y c l e
RequirementsDesign and BuildReleaseto TestReleaseto Field
100x Increase in Cost of Removing Defects
Sources: Barry Boehm, “Software Engineering Economics,” Prentice Hall, Inc., 1981.Basili Boehm, “Software Management,” IEEE Computer, January 2001.