Project governance

Last updated

Project governance is the management framework within which project decisions are made. Project governance is a critical element of any project since the accountabilities and responsibilities associated with an organization's business as usual activities are laid down in its organizational governance arrangements; seldom does an equivalent framework exist to govern the development of its capital investments (projects). For instance, the organization chart provides a good indication of who in the organization is responsible for any particular operational activity the organization conducts. But unless an organization has specifically developed a project governance policy, no such chart is likely to exist for project development activity.

Contents

Therefore, the role of project governance is to provide a decision making framework that is logical, robust and repeatable to govern an organization's capital investments. In this way, an organization will have a structured approach to conducting both its business as usual activities and its business change, or project, activities.

Three pillars of project governance

The decision making framework is supported by three pillars:

Structure

This refers to the governance committee structure. In the first instance the Capital Expenditure Board sanctions resources (capital, human and other) to projects. Secondly, the portfolio committee ensures that the right projects are selected. As well as there being a Project Board [1] or Project Steering Committee, the broader governance environment may include various stakeholder groups and perhaps user groups. Additionally, there may be a Programme, governing a group of related projects of which this is one, and possibly some form of portfolio decision making group. The decision rights of all these committees and how they relate must be laid down in policy and procedural documentation. In this way, the project's governance can be integrated within the wider governance arena.

The other governing bodies include the following:

People

The effectiveness of the committee structure is dependent upon the people that populate the various governance committees. Committee membership is determined by the nature of the project - other factors come into play when determining membership of programme and portfolio boards - which in turn determines which organisational roles should be represented on the committee.

Information

This concerns the information that informs decision makers and consists of regular reports on the project, issues and risks that have been escalated by the Project Manager and certain key documents that describe the project, foremost of which is the business case.

Core project governance principles

Project governance frameworks should be based around a number of core principles in order to ensure their effectiveness.

Principle 1: Ensure a single point of accountability for the success of the project

The most fundamental project accountability is accountability for the success of the project. A project without a clear understanding of who assumes accountability for its success has no clear leadership. With no clear accountability for project success, there is no one person driving the solution of the difficult issues that beset all projects at some point in their life. It also slows the project during the crucial project initiation phase since there is no one person to take the important decisions necessary to place the project on a firm footing. The concept of a single point of accountability is the first principle of effective project governance.

However, it is not enough to nominate someone to be accountable – the right accountability for the success of the project is the subject of Principle 2.

Principle 2: Project ownership independent of Asset ownership, Service ownership or other stakeholder group

Often organisations promote the allocation of the project owner role to the service owner or asset owner with the goal of providing more certainty that the project will meet these owner's fundamental needs, which is also a critical project success measure. However, the result of this approach can involve wasteful scope inclusions and failure to achieve alternative stakeholder and customer requirements:

  1. The benefit of the doubt goes to the stakeholder allocated with the project owner responsibility, skewing the project outcome;
  2. Project owner requirements receive less scrutiny, reducing innovation and reducing outcome efficiency;
  3. Different skill sets surround project ownership, Asset ownership and Service ownership placing sound project decision making and procedure at risk;
  4. Operational needs always prevail, placing the project at risk of being neglected during such times;
  5. Project contingencies are at risk of being allocated to additional scope for the stakeholder allocated project ownership.

The only proven mechanism for ensuring projects meet customer and stakeholder needs, while optimising value for money, is to allocate project ownership to specialist party, that otherwise would not be a stakeholder to the project. This is principle No. 2 of project governance.

The project owner is engaged under clear terms which outline the organisations key result areas and the organisation's view of the key project stakeholders. Often, organisations establish a Governance of Projects Committee, which identifies the existence of projects and appoints project owners as early as possible in a project's life, establishes Project Councils which form the basis of customer and stakeholder engagement, establishes the key result areas for a project consistent with the organisations values, and, oversees the performance of projects. These parameters are commonly detailed in a Project Governance Plan which remains in place for the life of the project (and is distinct from a Project Management Plan which is more detailed and only comes into existence during the development of the project).

Projects have many stakeholders and an effective project governance framework must address their needs. The next principle deals with the manner in which this should occur.

Principle 3: Ensure separation of stakeholder management and project decision making activities

The decision making effectiveness of a committee can be thought of as being inversely proportional to its size. Not only can large committees fail to make timely decisions, those it does make are often ill-considered because of the particular group dynamics at play.

As project decision making forums grow in size, they tend to morph into stakeholder management groups. When numbers increase, the detailed understanding of each attendee of the critical project issues reduces. Many of those present attend not to make decisions but as a way of finding out what is happening on the project. Not only is there insufficient time for each person to make their point, but those with the most valid input must compete for time and influence with those with only a peripheral involvement in the project. Further not all present will have the same level of understanding of the issues and so time is wasted bringing everyone up to speed on the particular issues being discussed. Hence, to all intents and purposes, large project committees are constituted more as a stakeholder management forum than a project decision making forum. This is a major issue when the project is depending upon the committee to make timely decisions.

There is no question that both activities, project decision making and stakeholder management, are essential to the success of the project. The issue is that they are two separate activities and need to be treated as such. This is the third principle of effective project governance. If this separation can be achieved, it will avoid clogging the decision making forum with numerous stakeholders by constraining its membership to only those select stakeholders absolutely central to its success.

There is always the concern that this solution will lead to a further problem if disgruntled stakeholders do not consider their needs are being met. Whatever stakeholder management mechanism that is put in place must adequately address the needs of all project stakeholders. It will need to capture their input and views and address their concerns to their satisfaction. This can be achieved in part by chairing of any key stakeholder groups by the chair of the Project Board. This ensures that stakeholders have the project owner (or SRO) to champion their issues and concerns within the Project Board.

Principle 4: Ensure separation of project governance and organisational governance structures

Project governance structures are established precisely because it is recognised that organisation structures do not provide the necessary framework to deliver a project. Projects require flexibility and speed of decision making and the hierarchical mechanisms associated with organisation charts do not enable this. Project governance structures overcome this by drawing the key decision makers out of the organisation structure and placing them in a forum thereby avoiding the serial decision-making process associated with hierarchies.

Consequently, the project governance framework established for a project should remain separate from the organisation structure. It is recognised that the organisation has valid requirements in terms of reporting and stakeholder involvement. However dedicated reporting mechanisms established by the project can address the former and the project governance framework must itself address the latter. What should be avoided is the situation where the decisions of the steering committee or project board are required to be ratified by one or more persons in the organisation outside of that project decision making forum; either include these individuals as members of the project decision-making body or fully empower the current steering committee/project board. The steering committee/project board is responsible for approving, reviewing progress, and delivering the project outcomes, and its intended benefits, therefore, they must have capacity to make decisions, which may commit resources and funding outside the original plan. This is the final principle of effective project governance.

Adoption of this principle will minimise multi layered decision making and the time delays and inefficiencies associated with it. It will ensure a project decision-making body empowered to make decisions in a timely manner. [2]

Additional and complementary principles of governance

The board has overall responsibility for governance of project management. The roles, responsibilities and performance criteria for the governance of project management are clearly defined. Disciplined governance arrangements, supported by appropriate methods and controls are applied throughout the project life cycle. A coherent and supportive relationship is demonstrated between the overall business strategy and the project portfolio.

All projects have an approved plan containing authorisation points, at which the business case is reviewed and approved. Decisions made at authorisation points are recorded and communicated. Members of delegated authorisation bodies have sufficient representation, competence, authority and resources to enable them to make appropriate decisions. The project business case is supported by relevant and realistic information that provides a reliable basis for making authorisation decisions. The board or its delegated agents decide when independent scrutiny of projects and project management systems is required, and implement such scrutiny accordingly.

There are clearly defined criteria for reporting project status and for the escalation of risks and issues to the levels required by the organisation. The organisation fosters a culture of improvement and of frank internal disclosure of project information. Project stakeholders are engaged at a level that is commensurate with their importance to the organisation and in a manner that fosters trust. [3]

Principles for multi-owned projects

Multi-owned is defined as being a project where the board shares ultimate control with other parties. The principles are: [4]

Roles

A key role in project governance is that of the project sponsor. The project sponsor has three main areas of responsibility which are to the board, the project manager and the project stakeholders.

The board

For the board, the sponsor provides leadership on culture and values, owns the business case, keeps the project aligned with the organisation's strategy and portfolio direction, governs project risk, works with other sponsors, focuses on realisation of benefits, recommends opportunities to optimise cost/benefits, ensures continuity of sponsorship, provides assurance and provides feedback and lessons learnt.

The project manager

For the project manager, the sponsor provides timely decisions, clarifies decision making framework, clarifies business priorities and strategy, communicates business issues, provides resources, engenders trust, manages relationships, and promotes ethical working.

Project stakeholders

For other project stakeholders, the project sponsor engages stakeholders, governs stakeholder communications, directs client relationship, directs governance of users, directs governance of suppliers and arbitrates between stakeholders. [5]

Elements

Project governance will:

Important specific elements of good project governance include:

See also

Related Research Articles

Corporate governance are mechanisms, processes and relations by which corporations are controlled and operated ("governed").

Governance is the overall complex system or framework of processes, functions, structures, rules, laws and norms borne out of the relationships, interactions, power dynamics and communication within an organized group of individuals which not only sets the boundaries of acceptable conduct and practices of different actors of the group and controls their decision-making processes through the creation and enforcement of rules and guidelines, but also manages, allocates and mobilizes relevant resources and capacities of different members and sets the overall direction of the group in order to effectively address its specific collective needs, problems and challenges. The concept of governance can be applied to social, political or economic entities such as a state and its government, a governed territory, a society, a community, a social group, a formal or informal organization, a corporation, a non-governmental organization, a non-profit organization, a project team, a market, a network or even the global stage. Governance can also pertain to a specific sector of activities such as land, environment, health, internet, security, etc. The degree of formality in governance depends on the internal rules of a given entity and its external interactions with similar entities. As such, governance may take many forms, driven by many different motivations and with many different results.

Information technology (IT)governance is a subset discipline of corporate governance, focused on information technology (IT) and its performance and risk management. The interest in IT governance is due to the ongoing need within organizations to focus value creation efforts on an organization's strategic objectives and to better manage the performance of those responsible for creating this value in the best interest of all stakeholders. It has evolved from The Principles of Scientific Management, Total Quality Management and ISO 9001 Quality Management System.

In business and project management, a responsibility assignment matrix (RAM), also known as RACI matrix or linear responsibility chart (LRC), is a model that describes the participation by various roles in completing tasks or deliverables for a project or business process. RACI is an acronym derived from the four key responsibilities most typically used: responsible, accountable, consulted, and informed. It is used for clarifying and defining roles and responsibilities in cross-functional or departmental projects and processes. There are a number of alternatives to the RACI model.

In a corporation, a stakeholder is a member of "groups without whose support the organization would cease to exist", as defined in the first usage of the word in a 1963 internal memorandum at the Stanford Research Institute. The theory was later developed and championed by R. Edward Freeman in the 1980s. Since then it has gained wide acceptance in business practice and in theorizing relating to strategic management, corporate governance, business purpose and corporate social responsibility (CSR). The definition of corporate responsibilities through a classification of stakeholders to consider has been criticized as creating a false dichotomy between the "shareholder model" and the "stakeholder model", or a false analogy of the obligations towards shareholders and other interested parties.

Clinical governance is a systematic approach to maintaining and improving the quality of patient care within the National Health Service (NHS) and private sector health care. Clinical governance became important in health care after the Bristol heart scandal in 1995, during which an anaesthetist, Dr Stephen Bolsin, exposed the high mortality rate for paediatric cardiac surgery at the Bristol Royal Infirmary. It was originally elaborated within the United Kingdom National Health Service (NHS), and its most widely cited formal definition describes it as:

A framework through which NHS organisations are accountable for continually improving the quality of their services and safeguarding high standards of care by creating an environment in which excellence in clinical care will flourish.

Executive sponsor is a role in project management, usually the senior member of the project board and often the chair. The project sponsor will be a senior executive in a corporation who is responsible to the business for the success of the project.

The chief risk officer (CRO), chief risk management officer (CRMO), or chief risk and compliance officer (CRCO) of a firm or corporation is the executive accountable for enabling the efficient and effective governance of significant risks, and related opportunities, to a business and its various segments. Risks are commonly categorized as strategic, reputational, operational, financial, or compliance-related. CROs are accountable to the Executive Committee and The Board for enabling the business to balance risk and reward. In more complex organizations, they are generally responsible for coordinating the organization's Enterprise Risk Management (ERM) approach. The CRO is responsible for assessing and mitigating significant competitive, regulatory, and technological threats to a firm's capital and earnings. The CRO roles and responsibilities vary depending on the size of the organization and industry. The CRO works to ensure that the firm is compliant with government regulations, such as Sarbanes–Oxley, and reviews factors that could negatively affect investments. Typically, the CRO is responsible for the firm's risk management operations, including managing, identifying, evaluating, reporting and overseeing the firm's risks externally and internally to the organization and works diligently with senior management such as chief executive officer and chief financial officer.

The project documentation (PID) is one of the most significant artifacts in project management, which provides the foundation for the business project.

<span class="mw-page-title-main">Internal audit</span> Independent, objective assurance and consulting activity

Internal auditing is an independent, objective assurance and consulting activity designed to add value and improve an organization's operations. It helps an organization accomplish its objectives by bringing a systematic, disciplined approach to evaluate and improve the effectiveness of risk management, control and governance processes. Internal auditing might achieve this goal by providing insight and recommendations based on analyses and assessments of data and business processes. With commitment to integrity and accountability, internal auditing provides value to governing bodies and senior management as an objective source of independent advice. Professionals called internal auditors are employed by organizations to perform the internal auditing activity.

Governance in higher education is the means by which institutions for higher education are formally organized and managed. Simply, university governance is the way in which universities are operated. Governing structures for higher education are highly differentiated throughout the world, but the different models nonetheless share a common heritage. Internationally, tertiary education includes private not-for-profit, private for-profit, and public institutions governed by differentiated structures of management.

Internal control, as defined by accounting and auditing, is a process for assuring of an organization's objectives in operational effectiveness and efficiency, reliable financial reporting, and compliance with laws, regulations and policies. A broad concept, internal control involves everything that controls risks to an organization.

Small Charity Governance is concerned with the control and direction of charitable organisations established for the public benefit in the United Kingdom. The majority of charities in England and Wales have an income under £10,000, and only about 22% of charities have any staff at all. Many community groups and small voluntary organisations are not registered charities, because either their turnover is below the threshold for registration or their purpose does not fall within the definition of charitable activity. Much literature about governance is written from the perspective of the minority of larger charities; this article attempts to address the topic by focusing on the experience and concerns of the majority. Governance is the process through which a group of people make decisions which direct their collective efforts. This typically features delegation to a smaller group, which is in turn accountable to the stakeholders or owners of the organisation.

ISO 31000 is a family of international standards relating to risk management codified by the International Organization for Standardization. The standard is intended to provide a consistent vocabulary and methodology for assessing and managing risk, resolving the historic ambiguities and differences in the ways risk are described.

Stakeholder engagement is the process by which an organization involves people who may be affected by the decisions it makes or can influence the implementation of its decisions. They may support or oppose the decisions, be influential in the organization or within the community in which it operates, hold relevant official positions or be affected in the long term.

The chief audit executive (CAE), director of audit, director of internal audit, auditor general, or controller general is a high-level independent corporate executive with overall responsibility for internal audit.

Project sponsorship is the ownership of projects on behalf of the client organization.

Risk IT Framework, published in 2009 by ISACA, provides an end-to-end, comprehensive view of all risks related to the use of information technology (IT) and a similarly thorough treatment of risk management, from the tone and culture at the top to operational issues. It is the result of a work group composed of industry experts and academics from different nations, from organizations such as Ernst & Young, IBM, PricewaterhouseCoopers, Risk Management Insight, Swiss Life, and KPMG.

<span class="mw-page-title-main">National Voluntary Guidelines on Social, Environmental and Economic Responsibilities of Business</span>

India's National Voluntary Guidelines on Social, Environmental and Economic Responsibilities of Business (NVGs) were released by the Ministry of Corporate Affairs (MCA) in July 2011 by Mr. Murli Deora, the former Honourable Minister for Corporate Affairs. The national framework on Business Responsibility is essentially a set of nine principles that offer businesses an Indian understanding and approach to inculcating responsible business conduct.

NIST Cybersecurity Framework (CSF) is a set of guidelines for mitigating organizational cybersecurity risks, published by the US National Institute of Standards and Technology (NIST) based on existing standards, guidelines, and practices. The framework "provides a high level taxonomy of cybersecurity outcomes and a methodology to assess and manage those outcomes", in addition to guidance on the protection of privacy and civil liberties in a cybersecurity context. It has been translated to many languages, and is used by several governments and a wide range of businesses and organizations.

References

  1. OGC, Managing Successful Projects with PRINCE2, London: TSO 2009
  2. Garland, Ross, Project Governance – a practical guide to effective project decision making, Kogan Page, London, Philadelphia, 2009.
  3. Directing Change - A guide to governance of project management, Association for Project Management, 2004. ISBN   1-903494-15-X
  4. Co-Directing Change - A guide to the governance of multi owned projects, Association for Project Management, 2007. ISBN   1-903494-94-X
  5. Sponsoring Change: A guide to the governance aspects of project sponsorship, Association for Project Management, 2009. ISBN   978-1-903494-30-1
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.