PROCESS OF RISK MANAGEMENT IN IT-PROJECTS
DOI:
https://doi.org/10.25264/2311-5149-2023-30(58)-84-88Keywords:
risks, project risks, management, IT project, start-up, model, management processAbstract
The purpose of the article is to study the process of project risk management and develop recommendations for its adaptation for IT projects. In the sphere of project management in the formation of project risk management process most often relies on international standards. The article presents an overview of the process of project risk management according to the standards: Project Management Body of Knowledge (PMBOK), International Organisation for Standardisation (ISO); Projects in Controlled Environments (PRINCE2). It is determined that the presented standards are sufficiently structured and can be applied to risk management in various projects, including those in the field of information technologies. The peculiarities of the risk management process in IT projects in accordance with the Microsoft Solutions Framework methodology are disclosed. It focuses on the formation of risk management process in projects in accordance with the Risk Management Maturity Model; Capability Maturity Model Integration (CMI); Maturity Level of Risk Management in IT Projects. IT projects have specific characteristics, and market competition, customer requirements, rapid development of technologies, team qualification – all this requires adaptability to the formation of the risk management process. When forming a risk management process in IT projects, especially in IT startup projects, the choice of a standard, methodology, or a combination of them (individual sections) should take into account the specifics of the project, project team, management, corporate culture, segment and market conditions, stakeholders, qualification of specialists engaged in risk management. In order to improve the effectiveness of risk management in IT projects, it is recommended that IT companies create structural and infra-red elements of risk management, namely: to attract risk management specialists; to develop job descriptions that define their functional duties and responsibilities; to develop corporate standards for risk management.