1 / 18

In All Respects Ready: Risk Management and IM

In All Respects Ready: Risk Management and IM. Mike Anderson Head, I&IT Controllership Branch OPS Information Management Day May 14, 2007. Session Objectives and Overview. 1. Overview presentation - risk management from an I&IT project perspective.

carlow
Download Presentation

In All Respects Ready: Risk Management and IM

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. In All Respects Ready: Risk Management and IM Mike Anderson Head, I&IT Controllership Branch OPS Information Management Day May 14, 2007

  2. Session Objectives and Overview 1. Overview presentation - risk management from an I&IT project perspective. 2. “IM Jeopardy” - IM practice areas and corporate tools for identifying and mitigating risk while managing information. 3. Q&A - with subject matter experts from the Office of the Chief Information and Privacy Officer.

  3. The Issue: Improving the Success Rate of I&IT Projects … “ * 15% of software projects are terminated before they produce anything * 66% are considered to have failed * Of those that do complete the average cost blowout is 43% * The lost dollar value of for USA projects in 2002 is estimated at US$38B with another US$17B in cost overruns” Standish Group, CHAOS Report, 2003

  4. The Issue: Improving the Success Rate of I&T Projects … “In Ontario, as in many other jurisdictions, there have been large IT projects that have lost momentum and support, where costs have been greater than expected benefits less than desired, and results well short of hoped-for outcomes. In Ontario today, approximately 40 percent of IT projects still fall short of plan in some way” Report of Ontario’s Special Task Force on the Management of Large-Scale Information and Information Technology Projects

  5. Wasted Taxpayer Dollars Reduced Citizen Confidence in Government Failed I&IT Projects Delayed Service Improvements The Implications +

  6. What is Risk? • The chance of something happening that will impact on the achievement of objectives. What is Risk Management? • The systematic process of identifying, analyzing and responding to risk. • Maximizing the probability and consequences of positive events and minimizing the probability and consequences of events adverse to objectives. • Risks can be tangible, e.g., loss of money -- or intangible, e.g., knowledge risk caused by deficient knowledge, or relationship risk caused by ineffective collaboration; or process risk caused by ineffective operational procedures. Source: Project Management Centre of Excellence 6

  7. Risk Analysis (Source: MOF)

  8. Project Risk Monitoring & Control Process Identify and Update Risk Events Qualify/quantify Risk Events Execute RM Plan Take Action Update RM Plan Source: Project Management Centre of Excellence

  9. Good IM is an integral part of successful I&IT projects • Managing risk is a key element of I&IT Controllership involving: • Money • Information • People • IT assets • Each I&IT project encompasses risks related to money, information, people and IT assets. • I&IT Projects done right <=> IM done right • The Ontario government has developed policy and tools for managing risk in I&IT projects to improve the success rate of I&IT projects

  10. IT Project Gateway Review Process

  11. I&IT Project ScorecardSection 1: Alignment with Government Priorities (top)

  12. I&IT Project Scorecard Section 2: Proposed Solution and Business Case (middle)

  13. I&IT Project Scorecard Section 3: Risk and Risk Management (bottom)

  14. OPS IM Principles • Accessibility • Information is easily accessible to those who need it and are authorized to access it. • Stewardship and Accountability • Accountability for managing information is clearly established and monitored. • Risk Management • Risks to information are identified and managed. • Usability and Quality Control • Information is accurate, timely, reliable, and easy to use. • Integration • The management of information is integrated with program planning and other business processes.

  15. Business Relationships Business Practices IM Risk identified can Be Associated With… InformationContent Availability Confidentiality Integrity

  16. OPS IM Tools • IM Framework • Oversight document of legislation, policies and other rules that guide the management of information according to the information lifecycle. • Information Management Readiness Review (IMRR) • A gap analysis / readiness assessment tool that works with the IM Framework model. • IM Practice Manual • Gives practical advice on how to engage activities for managing information. • IM Planning Guide • Gives direction on planning and managing information activities —allows specific timelines, performance measures (for evaluation), resources spent.

  17. Project risk managed right must ensure IM risk is managed right. Comments/Questions?

  18. Mike Anderson Head, I&IT Controllership Office of the Corporate Chief Information and Information Technology Officer & Chief Strategist Service Delivery Ministry of Government Services 416-327-2122 Mike.Anderson@ontario.ca http://intra.cio.gov.on.ca/controllership

More Related