Comprehensive Review and Implementation of Risk Management Processes in Software Development



Similar documents
White paper: Comprehensive Review and Implementation of Risk Management Processes in Software Development

Implementation of ANSI/AAMI/IEC Medical Device Software Lifecycle Processes.

How to implement a Quality Management System

New changes to cleanroom & clean air device classifications: ISO & 2

Medical Software Development. International standards requirements and practice

A new approach to teaching software risk management with case studies

Medical Product Software Development and FDA Regulations Software Development Practices and FDA Compliance

How To Know If A Mobile App Is A Medical Device

Considerations When Validating Your Analyst Software Per GAMP 5

The FDA recently announced a significant

Testing Automated Manufacturing Processes

How To Write Software

Software-based medical devices from defibrillators

Risk Assessment for Medical Devices. Linda Braddon, Ph.D. Bring your medical device to market faster 1

QUALITY RISK MANAGEMENT (QRM): A REVIEW

a Medical Device Privacy Consortium White Paper

Introduction into IEC Software life cycle for medical devices

The Role of Information Technology Studies in Software Product Quality Improvement

STS Federal Government Consulting Practice IV&V Offering

With the introduction of GAMP 5, A

How to Survive an FDA Computer Validation Audit

1

Document issued on: May 11, 2005

WHITEPAPER: SOFTWARE APPS AS MEDICAL DEVICES THE REGULATORY LANDSCAPE

A Risk Management Capability Model for use in Medical Device Companies

Controlling Risks Safety Lifecycle

Improved Utilization of Self-Inspection Programs within the GMP Environment A Quality Risk Management Approach

PHARMACEUTICAL QUALITY SYSTEM Q10

Computer System Configuration Management and Change Control

How to Implement Good Documentation Practices

Medical Device Software Standards for Safety and Regulatory Compliance

Guidance for Industry. Q10 Pharmaceutical Quality System

<name of project> Software Project Management Plan

Building an Effective Supplier Control Program: A review of key program elements & their implementation.

ICT Competency Profiles framework Job Stream Descriptions

Development, Acquisition, Implementation, and Maintenance of Application Systems

Computerised Systems. Seeing the Wood from the Trees

Measurement Information Model

RISK MANAGEMENT FOR INFRASTRUCTURE

Quality Risk Management

Computer System Configuration Management and Change Control

(Refer Slide Time: 01:52)

ASSESSMENT OF QUALITY RISK MANAGEMENT IMPLEMENTATION

Risk-Based Validation of Computer Systems Used In FDA-Regulated Activities

Best-Practice Software Engineering: Software Processes to Support Project Success. Dietmar Winkler

Administrative Data Quality Assurance Toolkit

Quality Assurance. Disclosure for Lilli Møller Andersen. No relevant financial relationships exist for any issue mentioned in this presentation

Final Document. Software as a Medical Device (SaMD): Key Definitions. Date: 9 December Despina Spanou, IMDRF Chair. IMDRF/SaMD WG/N10FINAL:2013

Regulatory Asset Management: Harmonizing Calibration, Maintenance & Validation Systems

US & CANADA: REGULATION AND GUIDELINES ON MEDICAL SOFTWARE AND APPS OR

Best Practice In A Change Management System

pm4dev, 2007 management for development series The Project Management Processes PROJECT MANAGEMENT FOR DEVELOPMENT ORGANIZATIONS

R214 SPECIFIC REQUIREMENTS: INFORMATION TECHNOLOGY TESTING LABORATORY ACCREDITATION PROGRAM

8. Master Test Plan (MTP)

A software for project management process

What is a life cycle model?

Procedure for Assessment of System and Software

GAMP5 - a lifecycle management framework for customized bioprocess solutions

Computer System Validation - It s More Than Just Testing

INTRODUCTION. This book offers a systematic, ten-step approach, from the decision to validate to

Considerations for validating SDS Software v2.x Enterprise Edition for the 7900HT Fast Real-Time PCR System per the GAMP 5 guide

PORTFOLIO, PROGRAMME & PROJECT MANAGEMENT MATURITY MODEL (P3M3)

Guideline on good pharmacovigilance practices (GVP)

OECD DRAFT ADVISORY DOCUMENT 16 1 THE APPLICATION OF GLP PRINCIPLES TO COMPUTERISED SYSTEMS FOREWARD

CONTENTS. List of Tables List of Figures

A Risk Management Standard

The MPH. ability to. areas. program. planning, the following. Competencies: research. 4. Distinguish. among the for selection

Basic Testing Concepts and Terminology

Overview of the System Engineering Process. Prepared by

Project Knowledge Areas

ICH guideline Q10 on pharmaceutical quality system

Empowering the Quality and Regulatory Compliance Functions

This interpretation of the revised Annex

MHRA GMP Data Integrity Definitions and Guidance for Industry March 2015

How To Validate Software

Software Engineering UNIT -1 OVERVIEW

Hazard Analysis and Critical Control Points (HACCP) 1 Overview

White paper: FDA Guidance for Industry Update Process Validation

Risk. Risk Categories. Project Risk (aka Development Risk) Technical Risk Business Risk. Lecture 5, Part 1: Risk

Guidance for Industry: Quality Risk Management

The Design and Improvement of a Software Project Management System Based on CMMI

Safety Regulation Group SAFETY MANAGEMENT SYSTEMS GUIDANCE TO ORGANISATIONS. April

Business Continuity Position Description

The U.S. FDA s Regulation and Oversight of Mobile Medical Applications

ISO, CMMI and PMBOK Risk Management: a Comparative Analysis

Software quality engineering. Quality assurance. Testing

Operational Risk Management - The Next Frontier The Risk Management Association (RMA)

UNICEF s Quality Assurance System for Procurement of Micronutrient Powders (MNP)

Application of software product quality international standards through software development life cycle

Life Cycle Activity Areas for Component-Based Software Engineering Processes

Quality Risk Management The Pharmaceutical Experience Ann O Mahony Quality Assurance Specialist Pfizer Biotech Grange Castle

Annex 2. WHO guidelines on quality risk management. 1. Introduction Glossary Quality risk management process 70

Medical Device Software

Risk Assessment and Management. Allen L. Burgenson Manager, Regulatory Affairs Lonza Walkersville Inc.

HEALTHCARE INFORMATICS

Transcription:

Comprehensive Review and Implementation of Risk Management Processes in Software Development This paper reviews the principles of risk management in software development of GxP systems, elaborates on the well-known risk management approaches and identifies some of the important concepts of proactive management of risks throughout the software development lifecycle. www.pharmout.com.au Page 1 of 12 Version-01

1.0 Purpose The purpose of this paper is to review the principles of risk management, elaborate on the well-known risk management approaches, and summarise some of the important concepts of each approach. Almost all of the risk management approaches encompass the same basic steps, i.e. identifying the risks, analysing them, planning mitigation strategies, and controlling them. 1.1 Audience a. Project Managers b. IT Validation Consultants c. QA Consultants 2.0 Overview This paper should help audiences interested in risk management in software development, validation and verification to gain an overall understanding of the area. 65% of project failures are accounted by management issues and 35% by technical issues 1. Managerial issues include problems which can be attributed to project structure, project resources, planning methodologies, customer buy-in, and inadequate risk management 1. Software program production often encounters issues such as, over-budget costs, delays in schedule and low quality of product. All of these issues pose a risk to the development of software systems. Program developers must perform a risk analysis before issues develop to identify the risks to their system, and create an action plan to mitigate the impact of the risks as well as resolve any issues that are unanticipated. The success of projects can be credited to the appropriate management of risks. This paper reviews the fundamentals of software risk management and the different popular risk management process models. 3.0 Context of this Technical Paper This paper is organised as follows: Section 4 discusses the principles of the risk management process. Section 5 provides an overview of software risks Section 6 explains the context of the risk management process and provides an overview of the various risk management processes. Section 7 explains the purpose of risk management. Section 8 discusses the taxonomy of software of software development risks. Section 9 provides a summary. www.pharmout.net Page 2 of 12 Version -01

4.0 Principles One of the important considerations challenging any risk management is the definition of risk. There are several formal definitions of risk available in literature, few of which are presented below: Risk is a combination of an abnormal event or failure, and the consequences of that event or failure to a system s operators, users, or environment. A risk can range from catastrophic (loss of an entire system, loss of life, or permanent disability) to negligible (no system damage or injury). 2 A possible future event that, if it occurs, will lead to an undesirable outcome. 3 5.0 Software risks The medical profession s growing reliance on electronic medical databases not only requires security guarantees 4,5,6 but introduces safety hazards as well 7. With the safety of patients at risk it becomes even more critical the software developer must be familiar with risk assessment techniques. For example, with a distributed database of medical records a risk analysis may identify that incorrect linkage to somebody else s medical record may be considered catastrophic. The incorrect link is itself not necessarily harmful provided data in the original record does not get corrupted. The hazard occurs when a patient gets incorrectly diagnosed based on the incorrect or incomplete data supplied. In today s economic climate it might no longer be cost effective to build entire systems from scratch, and more and more software is being constructed from Commercial off the Shelf (COTS) components. The increasing use of COTS components also introduces a new set of possible risks. Components often provide more functionality than is actually required, and these unneeded services may interfere with intended functions. As the source code may not be available, it is impossible to check if there is any malicious code such as viruses 8. The rapid changes associated with COTS releases and internet and web-based systems 9, 10, 11 makes it impossible to produce "air-tight" requirements. In addition COTS components are usually designed for other, more generic purposes and are unlikely to have been subjected to the level of verification and validation and vendor audits required for safety critical systems. Thus exposure to risk is multi-faceted. In addition to project management or business risks, the SMEs software developer must also deal with risk associated with software development. www.pharmout.net Page 3 of 12 Version -01

6.0 Context of Risk Management Risk management is a way to manage risks. In other words, it concerns all activities that are performed to reduce the uncertainties associated with certain tasks or events. In the context of projects, risk management reduces the impacts of undesirable events on a project. Risk management in any project requires undertaking decision-making activities. A brief summary of each risk management activity is described as follows: Identify: Identification surfaces software-related risks before they become actual problems which adversely affect the project. Before risks can be managed, they must be identified. Analyse: Analysis is the conversion of identified risk data into decision-making information, and provides the quantification and oversight clarity needed to guide the project manager to work on the "right" risks. Plan: Planning involves developing actions to mitigate individual software risks, prioritizing risk mitigation actions, and integrating these actions into an executable risk management plan. Track: Tracking consists of implementing the risk management plan and monitoring the status of risks and actions taken to mitigate those risks. Risk metrics and triggering events are monitored as part of the tracking function. Control: Control corrects for deviations from planned risk mitigation actions; and builds on project management processes to control mitigation plans, respond to triggering events, and improve risk management processes. Communication: Communication among the appropriate organizational entities must exist for risks to be identified, analysed, planned for, tracked, and controlled correctly. Risk communication lies at the centre of the paradigm to emphasize both its pervasiveness and its criticality. ANSI/AAMI/IEC 62304 Management Process This standard requires the use of the risk management process as defined in ISO 14971. A section of the ISO 14971 pertains to control of identified risks associated with each hazard identified during the risk analysis. It does not illustrate on details of the risks associated with activities defined in the software development life cycle. The standard emphasis on the conditions required defining the risk associated with the failure of the software item, which are defining the software items in term of its purpose, interfaces with other software and hardware items in the system architecture, ensuring changes are controlled and finally specifying risks control measures and risk analysis on the system architecture. It also identifies the software architecture as the earliest point at which software items can be classified definitively according to their safety role. www.pharmout.net Page 4 of 12 Version -01

The standard refers to the three major principles which promote the safety of medical devices software as Risk Management, Quality Management and Software Engineering. GAMP 5 Risk Management Process GAMP 5 utilizes the ICH 09 guidelines for a systematic process for the assessment, control, communication, and review of risks. It is an iterative process used throughout the entire computerized system life cycle from concept to retirement and focuses on - identifying functions with Impact on Patient Safety, Product Quality, and Data Integrity GAMP 5 prominences on the three approaches for managing risks as elimination by design, reduction to an acceptable level, and verification to ensure risk are managed to an acceptable level. It specifically addresses risk controls of software and placement of risk control in the development life cycle and type / complexity of software.i.e. bespoke, and off-the-shelf. TIR36:2007 Risk Management Process TIR36 focusses on identifying potential risk with Impact on Patient Safety, Product Quality, and Data Integrity and demonstration of compliance to an FDA regulation or ISO standard. It also specifically addresses the risk controls of software and the placement of risk control in the development life cycle and type of software.i.e. bespoke and off-the-shelf and the complexity of the system. It identifies two methods of the analysis of software failure as Software fault tree analysis and failure modes and effects analysis The TIR 36:2007 technical report refers to three major process which promote the safety and efficacy of the medical product as Risk of harm to humans, Regulatory risk and Environmental risk. It also applies the concepts of ISO 14971 risk management process for managing risks. 7.0 Purpose of Risk Management Risk management involves studying a system or process thoroughly to identify concerns or potential risks, analysing them, and developing strategies for mitigation and control of the risks. Risk mitigation does not mean altogether eliminating the activities that create the risk. It may instead result in the reduction of the risk to an acceptable level. When identifying risks to a software system, it is important to know all the possible risks, the level of severity of each risk and all the potential consequences of each. The action steps to mitigate or control each risk are determined based on a thorough knowledge of all risks. This preventative approach to risk management allows software developers to finish projects within their expected timelines and budgets. Projects with effectively managed risks also tend to produce better quality outputs, in addition to reduced costs and time. Software risk management approaches assess risks during all the phases of software development, by integrating risk management practices along with the software development process. www.pharmout.net Page 5 of 12 Version -01

As a result, in these approaches, the risk management models depend on the development process. With increasing complexity in software development, organisations have realized the importance of risk management, because it helps in reducing the uncertainties involved in developing software, and decreasing the chances of project failures. It is therefore imperative that software developers are aware of the risks and are knowledgeable about the nature of the risks. Risks to software systems should be considered throughout the process, rather than one part of the process. A risk management training program for software developers should aim to teach developers to: A. identify risks (business, process and integrity), B. calculate risk probabilities for quantitative assessments and to set realistic bands for qualitative assessments, C. calculate quantitative and determine qualitative risk impacts, D. determine when applying qualitative versus quantitative assessment is appropriate, E. perform safety and hazard analysis of a software product, F. prepare and carry out risk mitigation, monitoring and management strategies 15. Risks can be identified in all parts of a process. There are several risk models available to assist with risk identification and classification. These models may focus on the management of business risks rather than product risks. However, software products are critical and therefore developers should also be aware of methods used for determining risks to the safety and integrity of their products. The taxonomy helps in providing with an instrument (questionnaire) to elicit different classes of risks such as Requirements risks, Design risks, Coding and testing risks, Contract risks, Resource risks. 13 8.0 Taxonomy of Software Development Risks The taxonomy may be used to classify various factors relating to software development such as development tasks, quality procedures, and sources and consequences of risk. It is left to the organization to decide on how to establish the classification. The definitions used in this technical paper have been obtained from Taxonomy Based Risk Identification (CMU/SEI93-TR-006, ADA266992). Pittsburgh, PA: Software Engineering Institute, Carnegie Mellon University, 1993. A. Product Engineering B. Development Environment C. Program Constraints www.pharmout.net Page 6 of 12 Version -01

Product Engineering This approach to software risk classification involves defining the software engineering activities and all the possible risk associated with each of the activities is established. These activities include system and software requirements analysis and specification, software design and implementation, integration of hardware and software components and software and system test. Components of each of the activities are further broken down into quality, technical, safety and other attributes that may have an impact on the software development activities and putting the necessary controls in place. The diagram below details the product engineering classification concept: Stability Completeness Clarity Validity Feasibility Precedent Scale Requirements Design Functionality Diffculty Interfaces Performance Testability Hardware Constraints Development Maintainability Reliability Safety Security Human Factors Specification Engineering Specialites Code Implmentation & Intergration test Feasibility Testing Code/Implementation Environment Product System Figure 1 Product Engineering Classification Concept www.pharmout.net Page 7 of 12 Version -01

Development Environment This approach to software risk classification involves defining the activities of the project environment and the process used to develop a software product. The environment includes the development process, development system, management methods and work environment. Risk of each of the activities and process is then grouped as necessary and risks controls are put in place to accomplish project goals. The diagram below details the program engineering classification concept. Capacity Suitability Usability Familiarity Reliability System Support Deliverability Development System Development Process Formality of implmentation Suitability of process to development model Process controls Familiarity Product controls Monitoring Personnel Management Quality Assurance Configuration Management Management Methods Work Environment Planning Project Organization Management Experience Program Interfaces Figure 2 Development Environment Classification Concepts Program Constraints This approach to software risk classification involves defining external risk factors. These are factors that may be out-side the control of the project but can still have major effects on its success or constitute sources of substantial risk. These external factors include resources, contract and program interfaces. The risk attributes that may impact on the quality of the software development are then defined and control measures are put in place. www.pharmout.net Page 8 of 12 Version -01

9.0 Summary The ultimate objective of the risk management process is to identify and control risk associated with software development and implementation as soon as possible. Organisations should establish and implement risk management models that are aimed at achieving project quality objectives. In order to identify the risks associated with software development and implementation the project quality expectations essentials are to be defined. The software development model, environment, type of software i.e. bespoke or off-theself all influence risk management outcomes. Software audits may be required for off-the-self software focusing on the project quality expectations prior to implementation. The software development tools, and program language would all have an impact on the quality of software developed hence all the risk attributes associated with these elements needs to be evaluated and have control measures adopted as part of the quality assurance process. The process of risk management is continuous and applies throughout the systems lifecycle by identifying system vulnerabilities, assigning probability and impact and determining reasonable mitigating strategies. Terms & Definitions Terms Activity Anomaly Architecture Change request Configuration item Deliverable Evaluation Harm Hazard Definitions A set of one or more interrelated or interacting tasks Any condition that deviates from the expected based on requirements specifications, design documents, standards, etc. or from someone s perceptions or experience. Organizational structure of a system or component A documented specification of a change to be made to a software product Entity that can be uniquely identified at a given reference point Required result or output (includes documentation) of an Activity or Task A Systematic determination of the extent to which an entity meets its specified criteria Physical injury, damage, or both to the health of people or damage to property or the environment Potential source of harm www.pharmout.net Page 9 of 12 Version -01

Terms Medical Device Definitions Any instrument, apparatus, implements, appliance, implant, in vitro reagent or calibrator, software, material or other similar or related article, intended by the manufacturer to be used, alone or in combination, for human beings for one or more specific purpose(s) of diagnosis, prevention, monitoring, treatment or alleviation of disease, compensation for an injury, investigation, replacement, modification, or support of the anatomy or of a physiological process. Medical Device Software Process Safety Security Serious Injury Software system that has been developed for the purpose of being incorporated into the Medical Device being developed or that is intended for a use as a Medical Device in its own right. A set of interrelated or interacting activities that transform inputs to outputs Freedom from unacceptable risk Protection of information and data so that unauthorised persons or systems cannot read or modify them and so that authorised persons or system are not denied access to them. Injury or illness that directly or indirectly: a) Is life threatening, b) Results in permanent impairment of a body function or permanent damage to a body structure, or c) Necessitates medical or surgical intervention to prevent permanent impairment of a body function or permanent damage to a body structure Software development life cycle model Conceptual structure spanning the life of the software from definition of its requirements to its release for manufacturing, which; Identifies the PROCESS, ACTIVITIES and TASKS involved in development of a SOFTWARE product, Describes the sequence of and dependency between ACTIVITIES and TASKS, AND Identifies the milestones at which the completeness of specified deliverables is verified. Software Product Software System Software unit System Set of computer programs, procedures, and possibly associated documentation and data Integrated collection of Software items organized to accomplish a specific function or set of functions Software unit that is not subdivided into other units Integrated composite consisting of one more of the processes, hardware, software, facilities, and people, that provides a capability to satisfy a stated need or objective. www.pharmout.net Page 10 of 12 Version -01

References 1) McManus J. 2004. Risk Management in Software Development Projects, Elsevier. 2) Glutch, D. P. 1994. A Construct for Describing Software Risks, Technical Report 3) Report CMU/SEI-94-TR-14, Software Engineering Institute, Carnegie Mellon University, Pittsburgh, PA, USA. 4) Leishman, T. R., and VanBuren, J. 2003. The Risk of Not Being Risk Conscious: Software Risk Management Basics, STSC Seminar Series, Hill AFB, UT. 5) McCandless M. (1998) Staying Healthy in a Wired World, IEEE Intelligent Systems, Jan/Feb 1998, pp. 2-3 6) Anderson R. J. (2000) Privacy Lessons from Healthcare, S&P 2000. Proceedings of 2000 IEEE Symposium on Security and Privacy pp. 78-79 7) Smith E. & Eloff J. (2000) Cognitive Fuzzy Modeling for Enhanced Risk Assessment in a Health Care Institution, IEEE Intelligent Systems, March-April 1998, pp. 69-75 8) Heard S., Grival T., Schloeffel P. & Doust J. (2000) The benefits and difficulties introducing a national approach to electronic health records in Australia. Report to the Electronic Records task Force 9) Devanbu, P.; Fong, P.W.-L.; Stubblebine, S.G. (1998) Techniques for trusted software engineering. Proceedings of the 1998 International Conference on Software Engineering, pp. 126 135 10) Boehm B. (2000) Requirements that Handle IKIWIS, COTS, and Rapid Change. IEEE- Computer, 33:7 pp. 99 11) Platt, A-B. (1999) The usability risk. Proceedings of the 18th IEEE Symposium on Reliable Distributed Systems, pp. 396 400 12) Kornbluh, Ken (2000) Technical Software, IEEE Spectrum, 37:1, pp. 58 62 13) McDermid, J.A. (2000) Complexity: concept causes and control. Proceedings. Sixth IEEE International 14) Foo, S. -W. and Muruganantham, A. 2000. Software Risk Assessment Model. Proc. of the 2000 IEEE International Conference on Management of Innovation and Technology, 2, 536-544 15) Fuller, A, Croll P & Dei, L, A new approach to teaching software risk management with case studies, pp. 6 www.pharmout.net Page 11 of 12 Version -01

About PharmOut PharmOut is a professional consultancy offering product registration, engineering, validation and regulatory compliance solutions to the Medical Device, Pharmaceutical and Veterinary drug manufacturing industry from concept development, feasibility studies, scale up, engineering design, project management to the final product regulatory approval and GMP compliance certification. How PharmOut can help We offer the following range of services: ISO, GMP & APVMA compliance consulting Policies, SOP, and Forms. We can also help you obtain approval from the following international regulatory authorities (APVMA, FDA, MHRA, and TGA). Engineering Our experienced industry engineers can develop concept and detailed designs, around your production process ensuring full GMP compliance by careful project management and verification (validation) to ensure that the exacting GEP standards are met. GMP Compliance We can visit your site before or after a FDA or TGA GMP audit to assess and improve your quality management systems and/or validation documentation, business processes and physical operations. Quality Management Systems We can help you create a Quality Management System from scratch, or bring your current system into compliance. Technical Document Writing We can help you write procedures and work instructions that your staff will actually use and can follow. ISO & GMP consulting We can provide practical recommendations and advice on the implementation of ISO 9001 for Pharmaceuticals or ISO 13485 for Medical Device Quality Management Systems, Policies, SOP, and Forms. We can also help you obtain approval from the following international regulatory authorities (FDA, MHRA, and TGA). This includes Part 11 and Annex 11 compliance to FDA and TGA requirements. Training We run on-site or in-the-city classroom training on GLP, GMP compliance, validation and documentation writing. We also develop e-learning modules on topics such as Good Record Keeping that you can use for your ongoing training needs. Validation Our validation engineers / specialists can write validation plans, specifications and qualification protocols for i.e. cleaning validation, equipment validation, computers systems validation, analytical method validation or process validation. www.pharmout.net Page 12 of 12 Version -01

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information