Lessons Learned

Here is a Lessons Learned summary from a recent project. I believe a lot of the issues raised resonate in various projects in various industries.

Project Description:
Client penetration audit tests resulted in a list of varying items that needed to get fixed. These included items such as increasing password strength, implementing session timeouts, etc.

Highlights from the Lessons Learned document:
• Not adequate representation from the business stakeholders. This caused confusion.
• Business should have been engaged earlier. This caused disconnect between IT and the business and re-work was required. The business should have been engaged earlier to make quick decisions to avoid re-work.javascript:void(0)
• Need to periodically revisit our estimates more often, as we went over budget and getting a realistic expectation of actual budget is important
• The Team and the PM did a poor job with the cost estimates related to the impacts of strong password.
• The breadth of a specific requirement seemed to creep throughout the project and caused the need for a change control
• Losing a resource in the middle of the project caused confusion.