Lines of enquiry about IT project success and failure

What lines of enquiry about the success or failure of IT projects can we get from a quick dip into the literature? Here are some preliminary findings.

Emam et al (2008) say that results from their global web survey of IT departments in 2005 and 2007 “suggest that, although the overall project failure rate is high, word of a software crisis is exaggerated“. They report that IT project cancellation rate is in the range 11.5 to 15.5 percent and that “between 16 and 22 percent of delivered projects were considered unsuccessful on the basis of their performance. … The combined rate of cancelled plus unsuccessful projects was between 26 percent and 34 percent.” For delivered projects (see figures below) they give overall success rates and indicate which project outcomes were perceived to be the most challenging.

But what do we mean by ‘success’ for an IT project? Emam et al used six criteria in their analysis: user satisfaction, budget, schedule, quality and productivity. Agarwal and Rathod, (2006) explored “difference[s] in the perception of the meaning of success in the minds of people who evaluate the project performance“. They compared viewpoints external to the project organisation which, they suggest, tend to focus on cost and time for inferring project success, with those from inside it and they examined the views of one such internal set of stakeholders, namely programmers / developers, project managers and customer account managers. This group judged functionality and quality of the project output as the highest determinant of success, a finding that Agarwal and Rathod suggest should be studied further to see how it fits with external objectives like customer satisfaction and customer happiness.

One way of approaching this is shown in the figure at left. In this model, business strategy aims for a desired medium to long term impact by setting programme goals in the form of medium-term outcomes. The programme defines projects whose short to medium term objectives are the project outputs. When delivered, project outputs combine to enable the programme outcome(s). Over time, the outcomes bring about an impact. There are different types and numbers of stakeholders in all parts of the model (indicated by the stick figures), each having a different perspective. They measure success by the value they obtain and they perceive value differently because of their varying viewpoints; hence the measures of success can vary substantially amongst stakeholders. This line of reasoning leads to the proposition that a project’s success cannot be judged satisfactorily at the time it delivers its output. An apparent failure perceived by stakeholder directly involved at that time (perhaps due to cost and time overrun) might later prove to have been key to a successful outcome and/or impact. Or vice versa, of course.

What about risk management? Kappelman et al (2006) identified a list of early warning signs of IT project failure and found that a dozen of these IT project risk factors were most important during the early stages of a project. They suggest that knowing about and paying attention to these early warning signs early in the life cycle of a project will increase the probability of success. But is that happening? In their 2009 paper ‘Does risk management contribute to IT project success? A meta-analysis of empirical evidence‘, Bakker et al argue that “over the last 10 years, much has become known about what causes IT projects to fail. However, there is still very little empirical evidence that this knowledge is actually used in projects for managing risks in IT projects.” They conclude that IT project managers could have more impact on project success by paying attention to project risks than by following the steps prescribed in the risk management process. They also point to some areas for future research:

Given the indication that risk management can only be effective in specific project situations, further research might determine these specific conditions in the context of IT projects.
“It would be interesting to combine the relation found by Cooke-Davies (2000) between risk management planning and a timely delivery of the project with the work of Weick and Sutcliffe (2007), who discuss awareness creation and attention shaping as conditions for stakeholder behaviour in uncertain situations. In this view, risk management contributes to project success, because the stakeholders are aware of the fact that there are risks, on the basis of which they adjust their expectations and behaviour accordingly.”
“The majority of publications that relate risk management to project success refer to the traditional time–budget–requirements definition of project success. However, this approach is not in line with the view presented by other literature that project success entails more than just meeting time and budget constraints and requirements. Project stakeholders may use various project success definitions (Agarwal and Rathod, 2006). Therefore, the contribution of risk management should be considered in relation to a broader definition of project success.“

ChongWoo Park et al (2009) note that “reluctance to report the actual status of a troubled project has recently received research attention as an important contributor to project failure“. In their paper they “examine the effects of both situational and personal factors on an individual’s reporting behavior within the rubric of the basic whistle-blowing model adapted from Dozier and Miceli“.

Rich et al (2013) report that “large-scale information technology (IT) projects experience higher failure or abandonment rates than smaller IT projects … From a systems perspective, the problem appears to be related to dynamic and repeating management failures with an embedded project management model. … even a relatively small but persistent introduction of new requirements has a dramatic effect on project overruns, setting the stage for abandonment and restart.“.

Williams (2011) responded to studies performed by research corporations such as the Standish Group and Zells which attribute most IT project failures to “the lack of effective communication between members of the business and technology communities“. She examined communication techniques to find out whether they contributed to projects completing on time, on or under budget, and on scope. The requirements elicitation techniques were: rapid application development (RAD); joint application design (JAD); and group support system (GSS). Her results showed that “there were minimal differences in perceived effects of JAD and RAD techniques on IT project success. GSS on the other hand was perceived as a major catalyst in achieving IT project success.”

Sage et al (2013) use research on project failure to advance ideas about the use of performativity. This might offer a useful line of enquiry for me but I can’t decipher their social science jargon well enough to judge.

References

Agarwal, N., Rathod, U., 2006. Defining ‘success’ for software projects: an exploratory revelation. International Journal of Project Management 24, 358–370.

Cooke-Davies, T., 2000. Towards Improved Project Management Practice, Uncovering the Evidence for Effective Practices through Empirical Research (diss.). Dissertation.com.

El Emam, K.; Koru, A.G.; , “A Replicated Survey of IT Software Project Failures,” Software, IEEE , vol.25, no.5, pp.84-90, Sept.-Oct. 2008

Kappelman, Leon A., Robert McKeeman, and Lixuan Zhang. “Early warning signs of IT project failure: The dominant dozen.” Information systems management 23.4 (2006): 31-36.

Karel de Bakker, Albert Boonstra, Hans Wortmann, Does risk management contribute to IT project success? A meta-analysis of empirical evidence, International Journal of Project Management, Volume 28, Issue 5, July 2010, Pages 493-503, ISSN 0263-7863, 10.1016/j.ijproman.2009.07.002.

ChongWoo Park; Keil, M.; Jong Woo Kim; , “The Effect of IT Failure Impact and Personal Morality on IT Project Reporting Behavior,” Engineering Management, IEEE Transactions on , vol.56, no.1, pp.45-60, Feb. 2009

Rich, Eliot and Mark R. Nelson. “Understanding the Context of Large-Scale IT Project Failures.” IJITSA 5.2 (2012): 1-24. Web. 1 Mar. 2013. doi:10.4018/jitsa.2012070101

Sage Daniel, Dainty Andrew, Brookes Naomi, Thinking the ontological politics of managerial and critical performativities: An examination of project failure, Scandinavian Journal of Management, Available online 20 February 2013, ISSN 0956-5221, 10.1016/j.scaman.2013.01.004.

Williams, Victoria A. “Effective communication techniques for eliciting information technology requirements.” Trial 37 (2011): 00.

Weick, K., Sutcliffe, K., 2007. Managing the Unexpected, second ed. Wiley, New York.

3rd February 2013

International Journal of Stress Management

According to Wikipedia “the International Journal of Stress Management is a peer-reviewed academic journal published by the American Psychological Association on behalf of the International Stress Management Association. The journal was established in 2003 and covers research on “the assessment, management, and treatment of stress and trauma”. The current editor-in-chief is Sharon Glazer (University of Maryland.)“

30th January 2013

LEGO maturity & capability model

Abstract of The LEGO maturity & capability model approach: “Maturity model (MM) (based on Crosby’s original idea) has been one of the main buzzwords over the past 20 years. A variety of MMs have been created in several application domains, from Software Engineering to Contract Management. Despite several models intending to cover the same domain, their PRMs (Process Reference Models) typically have different scopes, do not always cover the same set of processes, or have different levels of depth, or do not express the same level of granularity when describing concepts. Thus some important questions from the MM users’ viewpoint arise: how to choose the right models for our needs? After selecting those models, how to build a new, tailored MM based on several sources and customized to a specific domain? This paper motivates these important questions and proposes a way to choose, combine and adapt the contents from multiple MMs within a generic-domain approach we call ‘LEGO’ (Living EnGineering prOcess), based upon the well-known kids’ toy that stimulates creativity through combining different bricks. We present three case studies, one of them based upon the development of the Medi SPICE model, illustrating how the proposed approach may be used to develop MCM (Maturity & Capabilty Models) in this context.”

30th January 2013

Risk management capability model

Abstract of Risk management capability model for the development of medical device software: “Failure of medical device (MD) software can have potentially catastrophic effects, leading to injury of patients or even death. Therefore, regulators penalise MD manufacturers who do not demonstrate that sufficient attention is devoted to the areas of hazard analysis and risk management (RM) throughout the software lifecycle. This paper has two main objectives. The first objective is to compare how thorough current MD regulations are with relation to the Capability Maturity Model Integration (CMMI^®) in specifying what RM practices MD companies should adopt when developing software. The second objective is to present a Risk Management Capability Model (RMCM) for the MD software industry, which is geared towards improving software quality, safety and reliability. Our analysis indicates that 42 RM sub-practices would have to be performed in order to satisfy MD regulations and that only an additional 8 sub-practices would be required in order to satisfy all the CMMI^® level 1 requirements. Additionally, MD companies satisfying the CMMI^® goals of the RM process area by performing the CMMI^® RM practices will not meet the requirements of the MD software RM regulations as an additional 20 MD-specific sub-practices have to be added to meet the objectives of RMCM.“

30th January 2013

Value-added medical-device risk management

Abstract from Value-added medical-device risk management: “The assessment of overall residual risk is the primary objective of performing risk-management activities and is required by ISO 14971:2000-Application of Risk Management to Medical Devices. Despite this requirement, much confusion remains among medical-device manufacturers and the various regulatory-approval bodies as to what is required. Today, many medical-device manufacturers do not formally address the subject. This paper will address the following questions: 1) What is overall residual risk? 2) Why is overall residual risk the most important measure of safety throughout the product life cycle? 3) How can overall residual risk be estimated? 4) What is an acceptable level of overall residual risk? 5) How can the concept of overall residual risk be used to manage safety after the product has been released? This paper will provide practical ideas that will allow medical-device manufacturers to begin assessing the overall residual risk of their products, and may also be helpful to regulatory bodies in formulating and communicating a consistent set of expectations. The concepts developed in the paper should be applicable to evaluating the safety of a wide variety of products as well.”

30th January 2013

Mission-critical and safety-critical development

Abstract from Mission-critical and safety-critical development: “The concern in mission-critical and safety-critical systems is that you develop them thoughtfully and carefully. They need traceable evidence for every detail. Like a good journalist, you and your team must establish the “who, what, when, where, why, and how” in everything you do. Development of mission- and safety-critical systems requires a temporal progression, regardless of the development model. Generally, there are five phases to development. These are: concept; planning and scheduling; design and development; controlled release; commercial release. Another issue in mission- and safety-critical system is people. People make processes work or not work. Good, disciplined people can struggle, even under wretched conditions, and produce good results. Add reasonable processes, and these same people can produce great results. Unfortunately, outstanding processes cannot rescue a project from unruly and undisciplined people.“

18th January 2013

Themes in medical device risk management

I ran a quick search of Google Scholar for papers which have the terms ‘medical device’ and ‘risk’ in their title. The themes that emerge are shown in the figure below. I wonder if any of these are of interest to ‘A’ who is struggling to focus her research.

Notes
Human factors including practitioners’ knowledge of device safety considerations.

The clinical setting includes risk profiling and assurance supported by use of a risk assessment tool such as Medical Device Risk Assessment (MeDRa).

Models and methods include Bayesian network model, FMEA, fault tree analysis and HACCP (Hazard Analysis and Critical Control Points).

14th December 2012

December tutorials

A useful few days at Warwick University for tutorials with my group. Day 1 was a session with the whole group . We started by asking each person to explain the purpose and design of their project so far and then letting the group discuss and critique the approach. Many good points emerged and people were reassured to learn that similar worries and concerns were being experienced by everyone. We concluded by talking about ethics and clarifying the process for obtaining ethical approval for people’s research.

Day 2 was spent on individual tutorial sessions. My aim was for the student to clarify to what extent they had mapped out the context of their research topic and hence get a feel for how much of it was still, for them, uncharted territory. As a by-product I wanted them to identify the key concepts involved and begin assembling these into a theoretical framework along the lines we had discussed in the November tutorials. Some of the results are shown below.

This model helped us to unpick the meaning of sustainable project management.

exploring the concept of sustainability

It focuses on the sustainability of project outputs rather than of the capacity to manage projects. Points of particular interest were: (a) the concept of sustainability ended up being related to impact and perhaps outcome, ie to to programme-level concepts, rather than to the direct project output; and (b) ‘efficiency in the use of resources; is an example of a variable concept, ie one which has a range of values, quantities or amounts.

This model explores how stress affects project performance.

Exploring the concept of how stress affects project management

It very helpfully draws together ideas contained in Beehr & Newman’s model (which I don’t much like) and the insightful model by Harrison. Some key insights to emerge were: (a) stress is caused by a misfit between a person’s self-assessment of their capability and their understanding of the nature of what they are required to do, neither of which are necessarily correct perceptions; (b) linkage to project performance is via the effect of strain on the actual (objective) performance of the project manager as compared to the performance required to meet project needs; and (c) methods for managing stress can be preventive or adaptive (reactive).

This model explores sources of risk in the context of medical devices.