Risk Creep: I

Early in the morning on May 27, one of Britain's busiest annual travel days, British Airways canceled all flights from London's two biggest airports. More than 1,000 flights and 75,000 passengers were affected. In a statement, the airline announced that "a major IT system failure" had disrupted flight operations worldwide [Johnston 2017][Dans 2017].

On September 28 "network problems" struck the firm Amadeus IT Group SA, whose Altea software "is used by more than 100 airlines worldwide," including "Air France, Southwest, Lufthansa, British Airways, Qantas, China Air and Korean Air" [Rizzo 2017]. Passengers around the world reported long lines, and although the system did recover that same day, delays of hours were widespread, and many international passengers missed connections.

On that same day, in the midst of worldwide air traffic disruption, Reuters reported that the United States General Accounting Office would be investigating these disruptions and a string of others that had occurred in the previous six months [Shepardson 2017]. Fires, network outages, human error, and goodness knows what else were suspected causes.

Clearly something was not right with the airlines' management of technological risk. And since no major industry understands technological risk management better than the airlines, it's reasonable to suppose that if the airline industry is having trouble managing technological risk, just about everyone is.

However assiduously we avoid risk, we sometimes find — suddenly, as the airlines did — that we're up to our necks in it. How does this happen? How does risk creep into our projects and our operations? Let's consider projects, because they're time-limited and therefore a little less complicated.

When project champions are required to "sell" When project champions are
required to "sell" a project
internally, they sometimes overcommita project internally, they sometimes overcommit. If that happens because of an inordinately high bar imposed by senior management, one possible cause is a most curious phenomenon, related to what Boehm et al. call a "conspiracy of optimism" [Boehm 2016], and which is actually a variant of the n-person prisoner's dilemma [Hamburger 1973]. Specifically, senior management might be trying to manage enterprise-scale risk by requiring high returns at low risk from individual projects (or even individual portfolios of projects). Ironically, this approach results in risk elevation for the individual projects or portfolios, because project champions must promise the nearly impossible, or the outright impossible, to gain access to resources. The paradoxical result is that risk aversion on the part of senior management fosters an environment in which nearly all activities that are underway are high risk. By attempting to wring risk out of the enterprise, management opens the door and invites it in.

It gets worse. It turns out that the risks confronting individual projects, arising from the unrealistic promises of project champions, are correlated. And that means that when one risk event materializes, others will too. We'll explore how project champions contribute to risk creep next time.  Top    Next Issue

Are your projects always (or almost always) late and over budget? Are your project teams plagued by turnover, burnout, and high defect rates? Turn your culture around. Read 52 Tips for Leaders of Project-Oriented Organizations, filled with tips and techniques for organizational leaders. Order Now!

Footnotes

Your comments are welcome

About Point Lookout

Thank you for reading this article. I hope you enjoyed it and found it useful, and that you'll consider recommending it to a friend.

Point Lookout is a free weekly email newsletter. Browse the archive of past issues. Subscribe for free.

Support Point Lookout by joining the Friends of Point Lookout, as an individual or as an organization.

Do you face a complex interpersonal situation? Send it in, anonymously if you like, and I'll give you my two cents.

Related articles

More articles on Project Management:

Scheduling as Risk Management

When we schedule a complex project, we balance logical order, resource constraints, and even politics. Here are some techniques for using scheduling to manage risk and reduce costs.

Risk Management Risk: I

Risk Management Risk is the risk that a particular risk management plan is deficient. It's often overlooked, and therefore often unmitigated. We can reduce this risk by applying some simple procedures.

Nonlinear Work: When Superposition Fails

Much of the work we do is confounding, because we consistently underestimate the effort involved, the resources required, and the time required to get it done. The failure of superposition can be one reason why we get it wrong.

Scope Creep and the Planning Fallacy

Much is known about scope creep, but it nevertheless occurs with such alarming frequency that in some organizations, it's a certainty. Perhaps what keeps us from controlling it better is that its causes can't be addressed with management methodology. Its causes might be, in part, psychological.

On the Risk of Undetected Issues: I

In complex projects, things might have gone wrong long before we notice them. Noticing them as early as possible — and addressing them — is almost always advantageous. How can we reduce the incidence of undetected issues?

See also Project Management and Personal, Team, and Organizational Effectiveness for more related articles.

Forthcoming issues of Point Lookout

Coming January 23: Judging Others

Being "judgmental" is a stance most people recognize as transgressing beyond widely accepted social norms. But what's the harm in judging others? And why do so many people do it so often? Available here and by RSS on January 23.

And on January 30: Conway's Law and Technical Debt

Conway's Law is an observation that the structures of systems we design tend to replicate our communication patterns. This tendency might also contribute to their tendency to accumulate what we now call technical debt. Available here and by RSS on January 30.

Coaching services

I offer email and telephone coaching at both corporate and individual rates. Contact Rick for details at rbrenaoEjFIXuoZUfdBsxner@ChacIgWAKaZGZYKMCnMaoCanyon.com or (650) 787-6475, or toll-free in the continental US at (866) 378-5470.

Get the ebook!

Past issues of Point Lookout are available in six ebooks:

• Get 2001-2 in Geese Don't Land on Twigs (PDF, USD 11.95)
• Get 2003-4 in Why Dogs Wag (PDF, USD 11.95)
• Get 2005-6 in Loopy Things We Do (PDF, USD 11.95)
• Get 2007-8 in Things We Believe That Maybe Aren't So True (PDF, USD 11.95)
• Get 2009-10 in The Questions Not Asked (PDF, USD 11.95)
• Get all of the first twelve years (2001-2012) in The Collected Issues of Point Lookout (PDF, USD 28.99)

Are you a writer, editor or publisher on deadline? Are you looking for an article that will get people talking and get compliments flying your way? You can have 500 words in your inbox in one hour. License any article from this Web site. More info

Public seminars

The Power Affect: How We Express Our Personal Power

Many people who possess real organizational power have a characteristic demeanor. It's the way they project their presence. I call this the power affect. Some people — call them power pretenders — adopt the power affect well before they attain significant organizational power. Unfortunately for their colleagues, and for their organizations, power pretenders can attain organizational power out of proportion to their merit or abilities. Understanding the power affect is therefore important for anyone who aims to attain power, or anyone who works with power pretenders. Read more about this program. Here's a date for this program:

• A recording of a program presented 6:00 PM June 29 (Eastern Time), Monthly Webinar, Technobility Webinar Series. You can earn 1.0 Category 'A' PDU by viewing this program. View this program now.
   
• A recording of a program presented 6:00 PM June 29 (Eastern Time), Monthly Webinar, Technobility Webinar Series. You can earn 1.0 Category 'A' PDU by viewing this program. View this program now.
   

The Power Affect: How We Express Our Personal Power

Many people who possess real organizational power have a characteristic demeanor. It's the way they project their presence. I call this the power affect. Some people — call them power pretenders — adopt the power affect well before they attain significant organizational power. Unfortunately for their colleagues, and for their organizations, power pretenders can attain organizational power out of proportion to their merit or abilities. Understanding the power affect is therefore important for anyone who aims to attain power, or anyone who works with power pretenders. Read more about this program. Here's a date for this program:

• A recording of a program presented 6:00 PM June 29 (Eastern Time), Monthly Webinar, Technobility Webinar Series. You can earn 1.0 Category 'A' PDU by viewing this program. View this program now.