Risk Assessment

A risk assessment is used to identify those components that carry higher risk and may require enhanced levels of testing. The following characteristics increase component risk:

• High business impact. The component supports high business-impact business logic (for example, complex financial calculation).

• Integration. This component integrates the Siebel application to an external or third-party system.

• Scripting. This component includes the coding of browser script, eScript, or VB script.

• Ambiguous or incomplete design. This component design is either ambiguous (for example, multiple implementation options described) or the design is not fully specified.

• Availability of data. Performance testing requires production-like data (a data set that has the same shape and size as that of the production environment). This task requires planning, and the appropriate resources to stage the testing environment.

• Downstream dependencies. This component is required by several downstream components.

Taking these characteristics into consideration, the Risk Score column of the component inventory (shown in the image in Component Inventory) shows a risk score for each component. In this example, one risk point is given to a component for each of the criteria met. The scoring system should be defined to correctly represent the relative risk between components. Performing a risk assessment is important for completing a test plan, because the risk assessment provides guidance on the sequence and amount of testing required.

Best Practice

Performing a risk assessment during the planning process allows you to design your test plan in a way that minimizes overall project risk.