A method, information processing system and computer readable medium for assessing risk in a software development project. The method includes receiving software project data for assessing risks in a software development project and identifying a plurality of focus areas for analysis. The method further includes defining a set of analysis tasks for each focus area and creating one or more rule sets for each analysis task, each rule set comprising one or more rules including software project data. The method further includes evaluating each rule set against the software project data summarizing results of evaluating each rule set corresponding to an analysis task. The method further includes providing a risk assessment value for each analysis task using the results of the summarizing element.