Software Engineering Institute | Carnegie Mellon University
Software Engineering Institute | Carnegie Mellon University

Digital Library

Javascript is currently disabled for your browser. For an optimal search experience, please enable javascript.

Advanced Search

Basic Search

Content Type

Topics

Publication Date

Technical Report

Risk Management Framework

  • Abstract

    Although most programs and organizations use risk management when developing and operating software-reliant systems, preventable failures continue to occur at an alarming rate. In many instances, the root causes of these preventable failures can be traced to weaknesses in the risk management practices employed by those programs and organizations. To help improve existing risk management practices, SEI researchers undertook a project to define what constitutes best practice for risk management. The SEI has conducted research and development in the area of risk management since the early 1990s. Past SEI research has applied risk management methods, tools, and techniques across the life cycle (including acquisition, development, and operations) and has examined various types of risk, including software development risk, system acquisition risk, operational risk, mission risk, and information security risk, among others.  

    In this technical report, SEI researchers have codified this experience and expertise by specifying (1) a Risk Management Framework that documents accepted best practice for risk management and (2) an approach for evaluating a program’s or organization’s risk management practice in relation to the framework.

  • Download

Cite This Report

SEI

Alberts, Christopher; & Dorofee, Audrey. Risk Management Framework. CMU/SEI-2010-TR-017. Software Engineering Institute, Carnegie Mellon University. 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525

IEEE

Alberts. Christopher, and Dorofee. Audrey, "Risk Management Framework," Software Engineering Institute, Carnegie Mellon University, Pittsburgh, Pennsylvania, Technical Report CMU/SEI-2010-TR-017, 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525

APA

Alberts, Christopher., & Dorofee, Audrey. (2010). Risk Management Framework (CMU/SEI-2010-TR-017). Retrieved December 07, 2016, from the Software Engineering Institute, Carnegie Mellon University website: http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525

CHI

Christopher Alberts, & Audrey Dorofee. Risk Management Framework (CMU/SEI-2010-TR-017). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 2010. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525

MLA

Alberts, Christopher., & Dorofee, Audrey. 2010. Risk Management Framework (Technical Report CMU/SEI-2010-TR-017). Pittsburgh: Software Engineering Institute, Carnegie Mellon University. http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525

BibTex

@techreport{AlbertsRiskManagement2010,
title={Risk Management Framework},
author={Christopher Alberts and Audrey Dorofee},
year={2010},
number={CMU/SEI-2010-TR-017},
institution={Software Engineering Institute, Carnegie Mellon University},
address={Pittsburgh, PA},
url={http://resources.sei.cmu.edu/library/asset-view.cfm?AssetID=9525} }