Risk and control of Information Systems






                           Systems Development









               3.1  Systems Development Life Cycle (SDLC)

                    Planning             Feasibility study including goal setting, timing, duration and
                                          budget

                    Analysis             Definition of project goals and analysis of user needs


                    Design               Features of system described in detail including screen
                                          layouts, process layouts, business rules and
                                          documentation. A prototype may be built

                    Development          Conversion of the design into a physical system including
                                          the acquisition and installation of the hardware and
                                          software

                    Implementation       The real code is written. Staff training. Testing for errors,
                                          bugs and inoperability (Quality assurance);

                    Review               User acceptance testing, maintenance, post-
                                          implementation review

               3.2  Systems development risks


                    Fails to satisfy user’s real requirements: the system was specified incorrectly.

                    Do not provide the data processing or information for which they were
                     designed, or to the quality expected.

                    The system was therefore designed and programmed incorrectly.

                    They cost much more to develop and run than expected.















                                                                                                       43