Linking Process and Data

by Vivek  Venkatraman,

Business Analysts Pty Ltd Consultant


I would like to discuss the importance of understanding the link between process and data while performing business analysis. Process and data are the fundamental elements of any business. It is critical to understand how they are linked to understand the product or service delivery because almost every business process has data linked to or flowing through it. Understanding the linkage helps gain better understanding of new domains and/or complex processes and helps to elicit requirements more effectively. It also helps uncover essential processes or links that may otherwise be overlooked. Insufficient understanding of the linkage between process and data might lead to incorrect and or incomplete requirements.


Identifying the linkage pattern can be quite useful when:

  • creating a new business process
  • analysing an existing process to understand the overall business process
  • understanding the terminologies of the existing business process
  • creating new data models from process flows
  • defining epics and user stories
  • writing effective acceptance criteria for user stories


There are a few steps which can be followed to help understand the linkage between process and data. Following steps can be followed for analysing existing business process to understand the business:

  • Begin with the process flow diagram to understand the sequence of tasks in a process.
  • Identify the data elements that passes through every task in a process.
  • Use these data elements to understand more about the data models and how it links back to different tasks in the process.
  • An in-depth understanding of the data model would help identify other processes that may relate to the current process.
  • Understanding the business processes that are related or linked to the current process would help gain a holistic view of the product/application.


Creating a new process to a level of detail requires an in-depth understanding of the process and data flows. This involves asking a lot of questions while charting out the business process flow diagrams and this is an iterative process. As we gain better understanding of the process and data, the quality of questions and the level of details would significantly improve.

  • From the initial elicitation information available, create a high-level process flow diagram.
  • Within each of the tasks, determine what data would flow through it.
  • From the identified data, create data models by liaising with the stakeholders.
  • This is an iterative process and as we gain better and better understanding of the data and process models, more questions would pop up till we are satisfied with the level of detail in the process flow diagram.

Later, I will discuss with examples on how the quality of questions would improve as we understand process and data together.

A few techniques can be used for this purpose:

  • The question that we need to ask to identify data when looking at the process flow is – “what data flows through this task and how does it relate to my process?”
  • From the data modelling, we can ask questions like “is this data used in any other task in the process and if so, how does is it used?”
  • For understanding the data and in turn the application as a whole, we can ask “what are the other processes this data is used in?”


Leveraging the English language

  • A well written process task is written in “Verb Adjective Noun” format.
  • The “Adjective Noun” in the process would help identify the data element which could then be used to understand the data.


I will discuss a couple of examples on how understanding data and process as a whole can help analyse or create better business processes.

An example of a customer order – Designing a new process to allow the user to create, edit and submit an order.  The system validates the order and confirms the order.


The process flow in the previous slide is quite simple but understanding the data might help understand the underlying business objective for writing better requirements. A few questions that would then help model the data are

  • What is the customer trying to order?
  • What are the attributes of a customer order?
  • Are the attributes linked to any other data source and what is the relationship?
  • If there is a relationship with other data elements, are those elements linked to the current process?

We can then create a data model once we have the above questions answered and relationships defined



A better understanding of process and data helps ask better questions which directly benefits in writing better requirements. It is by our understanding of process and data that we are able to ask the below questions:

  • Does the customer have a registered account and if not, does it have to be linked?
  • Does the asset exist and if so, do we have all the necessary details?
  • Has the validation for the asset and account been done already or does it have to be done as part of the order validation?

These are very valuables questions that help create the process flow in a detail that we need. Failing to get these questions answered may lead to missing details from the process flow diagrams. Understanding the process and data together thus helps writing better requirements, user stories and acceptance criteria.

Another example I would like to discuss is that of an Income process where we only have a high-level process flow.


The above high-level process doesn’t help understanding the entire business process. Let us try to use some techniques we discussed earlier to help understand the business process.

  • Looking at the process flow, let’s try to identify the data by using the “Verb Adjective Noun” technique.
  • Using this technique, “Income Announcement” will have to be the data for the first task.
  • Similarly, “Client Holdings” and “Customer Payment” should have to be the data for the subsequent tasks.

Let’s look at the data models to gain a better understanding



From the above diagram, it is evident that

  • For an “Announcement” to exist, there needs to be an “Asset”.
  • To gain better understanding of the “Capture Income Announcement” task, ask “how do we get the payable and record date information” and if there is a process for that, understand that process as well.
  • For a “Create Customer Payment” task, we can understand from the data that a Payment needs to have an announcement, Asset, Holding and Account.
  • Since we can see that Announcement is created from an Asset and Holding is created from Asset & Account, a payment can be created from the announcement and holding information which is in the previous two tasks.

This linkage between data and process thus helps understand what the business process is and what the outputs of the process are.


From the examples, we can conclude that linking data and process is essential for:

  • In-depth understanding of any business process
  • Understanding new domains quickly
  • Understanding the terminologies used in different domains
  • Developing better requirements
  • Improving quality of user stories and acceptance criteria


To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn

How do you become a Business Analyst?

by Justin Balina,

Business Analysts Pty Ltd Consultant

A couple of my colleagues have asked me this question and I couldn’t really give them a concrete answer. Later that day, I had time to reflect on the question – how does a person actually become a Business Analyst? Unlike teachers, doctors or architects, there isn’t really a degree in Australia that you can do specifically to become a BA. All the BA’s I’ve met in the past followed fairly different journeys. In this blog, I’ll share my journey to becoming a BA and some interesting stories from current/ex-colleagues too!


My BA journey

When I finished my IT degree, young me already knew that I did not want to be a full time tester. Maybe I was too impatient or just didn’t enjoy doing repetitive tasks. I thought about being a developer so added that to my shortlist. I also wanted to be a Database Admin so I added that too. I didn’t really want to be a Business Analyst as young me thought it wasn’t technical enough aka wasn’t ‘IT’ so I didn’t really apply for BA roles.

Fast forward a few weeks later, and after about 50 job applications – I’ve finally secured my first role as System Administrator! I was really excited as it was my first job out of university! There were heaps of technical systems, techniques and concepts that I needed to learn. It was a mix between a technical and business role and the thing that I really enjoyed was being the conduit between the business and IT. I felt like I was this translator that knew 2 separate languages! The other key thing that I liked in my role was a day was never the same! Every day of the week I had a different task to do! After speaking about it to my manager, he suggested that I consider being a BA as the things I enjoyed doing were in line with what BAs do!

After a year in my first IT job, I decided to move on and work as a Telecommunications Business Analyst for a financial institution. Yes it was tough. It was a learning curve for me but it helped me kick start my BA career!!


BA stories from colleagues

During my short career, I’ve met and worked with a lot of Business Analysts from different specialisations and backgrounds. I was quite surprised to figure out that everyone had a different journey than me.

I worked with a senior BA who finished chemical engineering in university and worked as a lab technician for 10 years before he became a BA. He was originally part of a project as a stakeholder and enjoyed the investigation/requirement activities with in business analysis, so he switched careers!

I’ve worked alongside a call centre representative who was in their role for 2 years working as an SME for a project I was part of. She really enjoyed the various project activities and challenges. For her, there was never a dull day when doing project work and we encouraged her to start her career as a BA. A year later and after doing a BA training course, the company decided to give her a promotion as a Junior BA to kick start her career!

I also had a colleague who, with 15 years of testing experience behind him, decided to move to become a BA. He said that BAs usually have multiple roles behind that job title. BAs can also be Project Managers, Testers, Data Analysts, Change Manager or even Network Engineers on some projects. It was that flexibility and ‘wearing many hats’ that attracted him to shift from the testing.


Some Guidance 

Some of the things I and my BA colleagues believe will help a person start a career in business analysis, or transition their career in this direction are:

  • Building a network – if you want to be a BA, talk to other BAs. Learn from them and build the chance of opportunities through this network.
  • Training – Business Analysis is not a cookie cutter role, but there are definitely some great courses that will get you well on your way. Business Analysts Pty Ltd provide amazing courses that have helped people transition into BA roles.
  • Become a part of the industry. The International Institute of Business Analysis (IIBA) provides a wealth of information, public events, and networks. If being a BA is what you want to do, connecting with an organisation focused on it is a great start.


To sum it up, everyone has different adventures they have to go through to become a BA. Being a BA doesn’t mean that you have a list of set tasks, but doing whatever is needed for the success of the project.

To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn

Bridging the Gap Between IT & OT Security

by Henry Elisher,

Business Analysts Pty Ltd Consultant


Many industrial organisations still view IT (Information Technology) and OT (Operational Technology) security as unique issues to be addressed in isolation. Even though IT & OT environments are foundationally and functionally different, the need for convergence between the two in the new world of increased and pervasive cyber risk can no longer be labelled as a consideration or option, convergence between the two spheres needs to be a mission critical objective.

A recent report by the World Economic Forum identified cyberattacks on critical infrastructure and strategic industrial assets as now being one of the top five global risks. Knowing that, it beckons reason that the typical view many industrial companies take when it comes to the security of their IT & OT spheres is that each still pose their own unique set of challenges which need to be handled in isolation. The reasoning being that the differing concerns and practices of each are justification enough to warrant a siloed approach to security.

Siloed approaches in themselves mean a disparate and non-cohesive structure. Gaps in the cyber defence of organisations as a result from the lack of cohesion are inevitable.

Attackers understand where the vulnerabilities lie and have the expertise to exploit the security gaps between IT & OT technologies. They understand full well that those responsible for organisational cyber defence can have different priorities and practices. Specifically, within the business there can be differing, functional requirements, different working cultures and risk appetites. It’s no surprise then that these environments also have the propensity to be dissimilar and divergent when it comes to their own security requirements.

In industrial organisations security has traditionally been divided across three silos, IT security, OT security and additionally, physical security (plant security and system integrity). This divide has made it difficult for operators to identify and respond to incidents when they’ve occurred. Coupled with the historical aspect of siloed priorities in terms of security requirements, with IT security focusing primarily on confidentiality and OT security on integrity and availability, modern day operations have been placed under immense pressure and scrutiny. New challenges have now arisen from the complexities formed out of elaborate IT and OT infrastructures, which typically include thousands of devices, all being connected via the IIoT (Industrial Internet of Things). These complexities have changed the game yet again, making it even more difficult to detect, investigate and remediate cyber security threats and incidents.

From the perspective of critical infrastructure providers, the potential societal consequences from a cyberattack requires that their operations take place in a certain manner. The priority of an operator, such as in the electricity market, is to ensure the safe and reliable delivery of that service, it’s their primary concern. Having this as their key responsibility in turn leads to other differences across areas, from component lifetimes and patching practices to audit timelines and additional functions. Reliability of service in the electricity sector is of utmost importance and becomes an overarching goal.

These security challenges are also often exacerbated by the communication barriers between the two groups & the fact that they quite likely have different reporting and governance structures.

This lack of coordination and communication becomes especially risky in times of emergency where the organisation has been the target of a cyber-attack and needs to formulate a cohesive, comprehensive response to, or in fact recover from, a cyber incident.

Protection of the various spheres in an organisation is obligatory. However, in order to protect a complex surface attack, the way many industrial organisations are acting recently has been to devise ways to converge their IT & OT working groups. A more than onerous task in itself as each group has a tendency to believe that security vulnerabilities are inheritedby them usually due the blatant ignorance of the other. This finger pointing tends to entrench an eternal battle that centres on each domain playing a defensive roll and devising mitigation strategies against risks posed by the other side. The issue is of course not internal. However, the area of conflict that exists between the two groups is just the space required for attackers to utilise and exploit it.

The difference in the IT & OT environments highlights one of two fundamental barriers that need to be overcome. IT environments are dynamic and IT systems are often patched, upgraded and replaced regularly. IT personnel have their concerns centred on the confidentiality of data, data integrity and availability. As knowledgeable as IT staff may be in their fields and as up to date they may be on trends & threats, their propensity to operate outside their sphere is limited. IT personnel are often lacklustre and typically unfamiliar with OT networks and control systems.


OT staff work in a world where stability, reliability and safety are the top priorities. Their remit is to maintain the stability of complex and sensitive environments, quiet often with legacy systems that have not been upgraded in decades.

This inherent environment difference due to business priorities and culture can be pervasive and quite often divisive without pointed remediation.

Also, the different technologies utilised within each domain has the propensity to cause unnecessary tension. Within the realm of IT, personnel are used to working with the latest hardware and software, including of course the very best security available to protect their network. Their time is spent patching, upgrading and replacing systems. Whilst IT has ownership of their ‘sphere’ the disparity between what they see as their world and the responsibility & accountability they should have is altogether different.

OT on the other hand has the propensity to function with legacy technologies, many of which pre-date the internet era. Common features of the IT environment are lost in the OT world, and the lack of basic security controls such as authentication and encryption are often disregarded in terms of importance to the ire of IT who in turn can be both incredulous and dismissive in their contempt.

C-level support is the primary step to being able to instigate IT/OT convergence, and ultimately, bring about the success of forming a harmonious unification of practices in IT & OT. In order to unify strategy, security thinking and practices, the objective of organisations is to create a culture of collaboration between the disciplines.

Despite the divide there are organisations that have successfully facilitated deep collaboration between IT & OT, the importance and driving factor of which rested within the remit of the C-suite and the support provided.

In order to facilitate convergence some organisations have created C-level roles to bridge the gap between the two. For example, it is not uncommon to known see a Chief Digital Officer whose role it is to be bridge the divide between IT & OT through the merging of culture, and by the establishment of incident management responsiveness that spans both groups.

To make this happen, more and more organisations are taking senior, experienced engineers from OT units, and assigning them to support incident response within the Security Operations Centre (SOC). This in itself helps to create an environment where people, knowledge, processes and technologies straddle and work to unify the IT/OT fence.

What consolidating IT & OT cybersecurity efforts achieves first and foremost is that it clarifies responsibilities, but more importantly, moves to eliminate security gaps. It also ensures that there is a consistency of security levels across the entire organisation and leads to reductions in the overall cyber risk. The key objectives set within this form of consolidation are therefore to entrench a shared responsibility for end-to-end cybersecurity, ensure global corporate governance of all cybersecurity policies, procedures, technologies and guidelines, and supports global visibility and management of all cyber assets, vulnerabilities and threats.

The elimination of the IT & OT silos is critical for the goal of reducing risk. The aim should be for the creation of a single digital security and risk management function/structure, with a direct report into IT but having a responsibility that spans all of the requirements for IT & OT security.

In order to be effective therefore, a converged IT-OT cybersecurity program needs to ensure a centralised oversight of the entire organisation’s cyber security efforts and additionally, have the authority invested in the group to be able to implement key objectives. Implementation of key objectives can be through formal organisational changes or via virtual teams that work in IT groups, OT groups, and security operation centres (SOC’s). The integration of third parties with specific capabilities should also be a consideration in order to address the ongoing shortages in cybersecurity professionals.

Any organisation going through changes will inevitably encounter varying degrees of resistance. Even though the benefits derived from the convergence of IT/OT cyber security strategies may seem to be obvious, the transition is likely to be arduous due to personnel implacability and the complexity of two stand-alone operating functions being subsumed into one cohesive structure.

Some of the initiatives that companies utilise to ease the transitions are:

  • Establish cross-trained site teams in order to handle routine security hygiene
  • Create a global support network within IT & OT experts in order to deal with more complex cyber issues such as malware intrusions and anomalous behaviour
  • Update key IT/OT cybersecurity processes from vulnerability management to incident management
  • Ensure compliance with corporate policies
  • Integrate cybersecurity technology to enable coordinated cybersecurity management

Also, there needs to be the understanding that whilst the tools required by IT & OT might need to be different, they do in themselves need to be compatible and fully integrated within key areas such as asset inventory, endpoint and network protection, security monitoring & reporting, and secure remote access.

Beyond the technical challenges, posed inherent cultural issues also need to be addressed. Quite commonly distrust between the two groups may be the biggest hurdle to overcome on its own. Methods that might aid in the easing of transition in this regard might include workshops to reconcile perspectives, and the cross-pollination of groups in order to build bridges and re-establish trust between the groups.

The challenges posed in bridging the gap between IT & OT security exist, are real, but, are not insurmountable. As both IT & OT infrastructures increase in complexity and their dependencies increase accordingly, ownership of cyber security issues cannot take place in isolation. A siloed approach will not work in environments of interdependency because aside from the internal disruption and inefficiencies of this viewpoint, the gaps and ‘grey’ area of ownership create the opportunity for attackers to take advantage.

Convergence of the IT & OT security realms needs to have C-level support and a framework set by which security for both resides in a single location under a single remit. Once a cohesive plan is in place and once collaboration occurs between both domains then effective strategies for mitigation in a holistic sense can be made possible.


To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn



Building Cyber Resilience – The New Challenge For Business Leaders

by Henry Elisher,

Business Analysts Pty Ltd Consultant


Cyber threats can and will affect all industries. The most current wave of digital transformation to hit the global economy has brought to us the IOT, (Internet of Things), which means now that nearly all organisations operate in a digitally interconnected ecosystem.  Cyber security can therefore no longer be regarded as an individualised problem that can be fought at the digital and physical frontier of a single organisation. The cyber security vulnerability of anyone you do business with can now also be your vulnerability also, you too can inherit the risk.  

Successful cyber-attacks on critical infrastructure have the potential to immediately threaten both national security and economic stability. The degree and nature of attacks now have the potential to cripple not just industries, but can also do untold damage to nations, as dependencies have risen through interconnectedness. One only needs to look at the NoTPetya cyber-attack on the Ukraine in 2017 to witness the ferocity, scale and damage of a cyber event with magnitude[i]. The scale and potential to create damage and harm is not lost on cyber threat actors either. Criminal groups, hacktivists with the aim of causing civil unrest, and even state-sponsored groups performing espionage activities, all understand the vulnerabilities of operating in an interconnected and interdependent environment where the consequences of a cyber-attack can easily cascade from one to many in an instant. The Ukrainian event will not be the last, and even though the degrees of attacks may vary it cannot be assumed that anyone is immune.

Combatting and managing this growing risk must now become the onus of business leaders. To understand, identify and build a robust and pervasive cyber resilience culture and further, ensure it is instilled within every person of an organisation means that actions and the activity of knowledge transfer, defence and culture needs to commence from the top down. Board members and chief executives are now obligated to take it upon themselves to proactively formulate strategies and ensure cyber resilience is interwoven into the fabric of their organisation.

The new interconnected world in which organisations operate necessitates leaders to fundamentally shift their mindset in two distinct ways[ii]:

  1. There needs to be the understanding that cyber-risk is a business and ecosystem-wide risk and not simply a component that fits within the remit of IT risk. Cyber risk management decisions must be integrated into all business decisions.
  2. Awareness that managing cyber-risk in an interconnected environment means that leaders need to look well beyond the boundaries of their own houses and understand their broader neighbourhoods of suppliers, customers, competitors, peers and regulators, amongst others[iii].


Knowing what needs to be protected is the first step in addressing the challenges of cyber resilience in a complex and interdependent operational universe.

Organisations usually have interdependent relationships with numerous stakeholders that can span multiple degrees of separation within an organisation. In order to ensure that cyber security and resilience are effectively adopted within the context of business strategy, leaders have the obligation to grasp both the breadth and depth of the connections within their operational sphere.

Being able to produce a logistical map of interconnected stakeholders is also of utmost importance. The identification has to start within the core value chain, specifically, identifying the connected infrastructure, and then, expanding that sphere of reference to the surrounding business ecosystem of suppliers, customers and peers. This then needs to be encapsulated and buttressed by a clear picture of what the extended ecosystemis.

The extended ecosystem is also known as the strategic layer and comprises policy makers, regulators, law enforcement, insurers and standards bodies.

As the digitisation increases so too does the complexity and interdependencies of the network layer, i.e., the computer systems[i] that interact with one another. Coming to an understanding of this layer early in the piece and getting ahead of the development will allow a better insight into obvious cyber vulnerabilities and will highlight how this layer can be utilised as a highway to propagate cyber-attacks, and further, how the effects can easily cascade across the ecosystem.

Understanding the network layer and also working both adeptly and with agility in the strategic layer is critical in becoming cyber resilient. Cyber security and resilience cannot be allowed to simply be regarded in isolation. Leaders must now take it upon themselves to recognise that a lack of security in their broader neighbourhood means that their own cyber integrity has the ability to be undermined. Cooperation is a key aspect to heightening cyber resilience. It is essential between members of a neighbourhood, from oversight bodies to suppliers, customers and employees, that cooperation through all operational spheres needs to take place in order to inform, identify and combat all perceived threats.


How to secure systems that will become increasingly more complex will inevitably be the ongoing challenge for any market. The ever-changing nature of technology and the shifting sands on which both the network layer and strategic layer are founded will mean collaborative and collective efforts will need to be sustained, indefinitely.    

In 2017, to help facilitate board oversight and action in support of organisational cyber resilience, the World Economic Forum (WEC)[i], in collaboration with leading academics, developed 10 overarching principles[ii] for organisational cyber governance. The principles were put in place to assist boards in promoting cyber resilience as a key component of their overall organisational strategy.

The key cyber resilience principles are restated below in this blog. These principles have been lifted exactly as stipulated by the WEC

Principle 1 – Responsibility for cyber resilience – The board as a whole need to take ultimate responsibility for the oversight of cyber risk and resilience. This primary oversight may be delegated to an existing committee or new, dedicated committee.

Principle 2 – Command of the subject – Board members need to receive cyber resilience training upon joining the board and are regularly updated on threats and trends – with advice from independent external experts when requested.

Principle 3 – Accountable Officer – The board ensures that one corporate office is accountable for reporting on the organisations capability to manage cyber resilience and progress in completing cyber resilience goals.

Principle 4 – Integration of cyber resilience – The board ensures that management integrates cyber resilience and cyber risk assessments into the overall business strategy as and enterprise wide risk management, as well as budgeting decisions and resource allocation.

Principle 5 – Risk appetite – The board annually defines and quantifies business risk tolerance relative to cyber resilience and ensures that it is consistent with corporate strategy and risk appetite.

Principle 6 – Risk assessment and reporting The board holds management accountable for reporting a quantified and understandable assessment of cyber risks, threats and events as a standing agenda item during its meetings.

Principle 7 – Resilience plans The board ensures that management supports the officer for cyber resilience by creation, implementation, testing and ongoing cyber resilience plans, which are harmonized across the business.

Principle 8 – Community The board encourages management to collaborate with stakeholders, as relevant and appropriate, in order to ensure systemic cyber resilience.

Principle 9 – Review The board ensures that a formal, independent cyber resilience review of the organisation is carried out annually.

Principle 10 – Effectiveness The board periodically reviews its own performance on implementation of these principles and seeks independent advice for continuous improvement.


To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn

[I]‘The untold story of NoTPetya, the most devastating cyberattack in history’,accessed 23 APR 2019,

[II]Boston Consulting Group, Whitepaper, accessed 12 APR 2019,’ Building cyberresilience into the electricity ecosystem’,


[III]World Economic Forum, Whitepaper, accessed 15 April 2019, ‘Cyber resilience in the electricity ecosystem: Principles and guidance for boards’,


Confessions of an Agile convert

by Nikesh Parbhoo,

Business Analysts Pty Ltd Consultant




Confessions of an Agile convert

Having to work in an agile environment for the first time can be a daunting challenge, particularly if you’ve done work in waterfall environments for most of your career. Agile is being adopted to a greater degree in IT delivery. You will find that each country, city, industry or client/employer will either be more mature or less mature at effectively applying Agile techniques. Ensure that you understand where you need to operate at in this maturity continuum.

What does it take to make that leap across the chasm into the world of agile?

Firstly, read up on agile as much as you can. The IIBA has the Agile extension to the BABOK which is useful.  Speak to as many professional agile practitioners as possible. Some cities have Agile meetup groups that you can leverage off.           

If you have a decision to make regarding accepting a piece of work in an Agile project, your preparation should give you the confidence to say yes. All your analysis skills developed in your Waterfall life is fully transferable in Agile. Agile is just a method of work – the skills associated with being a business analyst remain the same. Attention to detail, people skills, business acumen and all other good BA skillsets will be to your advantage in any Agile space.

Know your new tools and artefacts

Gant charts, Microsoft project, requirements specification documents and business process management tools/artefacts are some the assets of knowledge you would have built up during your waterfall career. Agile is less structured, and so you need to understand your new paradigm of working and the tools that go with it.

The Atlassian suite (Jira and Confluence) is widely used in agile IT implementation projects.  The good news is that using these tools are intuitive and nota mountain to overcome to become productive quickly.

‘Let go’ of your artefacts

Typical Waterfall BAs have a very close, sometimes emotional relationship with their artefacts, be it the requirements specification document, business process maps, etc. This ownership mentality is something that must loosen up in an Agile environment where the team owns the artefacts through co-creation and collaboration.

The BA takes primary accountability for an agile artefact (like a User Story), but it is ultimately a product of the greater team. Don’t feel like your space is being intruded upon when the product owner or the SMEs make a change to your User Story on Jira.

Agile is more human

Agile offers teams the ability to think and produce value like we do natively as human beings.  We naturally operate on a try-fail-try again basis as humans. Think babies or children and you soon realise that they essentially operate on an agile basis. They are never perfect, but they are constantly trying and eventually get it right. The frustrations that accompany the ‘throw it over the wall’ mentality of Waterfall evaporate quickly in a well-run Agile team. Remember: Fail fast to get to ‘goodenough’ quicker.

Information Crosshairs

For all its goodness, Agile also presents some challenges. Information flow is one of those that Agile cannot necessarily fix. Too much communication, too little absorption by all the relevant stakeholders can lead to rework, distractions and duplication. When important decisions are being made on the fly (which is a strength of agile), it is critical that these get communicated effectively to the team. Use the daily stand-ups to facilitate this.

Get everything into Jira & Confluence

Your agile project is probably using Jira/Confluence as its tool. Ensure that Jira (or any other tool of choice) is the one and only source of truth. A half-baked attempt at using Jira does not help the project move forward, and only serves to intensify the problems associated with information crosshairs.

Jira is great, but Kanban boards can be better 

Tools like Jira are fantastic to keep track of all your user stories. Physical Kanban boards where team members update their stories at daily stand-ups form part of powerful agile rituals that can congeal a team. There is something inherently primitive about having a tactile experience of moving a card to ‘feel’ progress. More so, a physical Kanban board is a prevailing communication tool to sponsors, program managers and similar management stakeholders that have a constant visual report they can access at any point in time.

Physical Kanban boards however, do not work very well when you have distributed teams located across the globe. In these circumstances, a Kanban board can work better for a localised team that is working on a stream within a larger project.

Getting the best people in the room

This concept is not unique to Agile. Having the best people in the room increases your chances of working in any environment. I have found that two key agile roles can have a huge positive effect on the life of a BA in an agile project are:

  • •          The Product Owner:  This person needs to be a strong advocate for the system and should be empowered to make substantial decisions on behalf of the business.  All team members (business analysts included) will turn to the product owner when making critical decisions about the solution.
  • •          The Scrum Master:  A good scrum master should be able to facilitate momentum on the project and clear any obstacles. A good scrum master connects the dots between all project disciplines and overlays this with his/her deep insights about agile practices.

Most importantly … play and have fun

Kids in a playground manufacture fun in a way that might be observed as chaos to an outsider.  An agile project has similar traits. Leave the shackles of your waterfall past behind and embrace a more collaborative (sometimes messy), but ultimately more energetic, adaptable and fun way of working.



To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn



‘A Typical Day with AI’

by Esther Herzog,

Business Analysts Pty Ltd Consultant


The purpose of this blog is to observe how AI is currently able to assist our everyday activities from sunrise to sundown.

AI should be augmenting the tasks and activities we already complete in our everyday lives, rather than creating completely different ways of completing simple processes.

Let’s explore AI and how it is leveraged to ensure maximum benefits.

Here is a look at an AI timeline journey on a typical weekday, a look into the everyday journey of a busy working family.





  • Using the home speaker device to program the alarm to wake the family by sending a signal to all connected smart devices to tell everyone to wake up and shuts the children’s access to the internet off until they reach school.
  • The smart home energy control IoT that is incorporated into the home, opens the shut-out blinds automatically, the air-conditioning is switched to off and the lights are monitored according to the time of day and natural light capacity.


  • The scheduled activities are notified to all family members via smart devices. Scheduling has been completed at the weekend with an automated virtual scheduling assistant (VSA). VSA identifies the planned activities and tasks for each day and the required attire or apparatuses.
  • The AM news is automatically switched to on using IoT smart tv.
  • The AI based voice recognition fridge is activated for school lunch recipes. Suggestions are produced to the group and the ability to purchase groceries if required.


  • The IoT home speaker device is making clothing recommendations based on the weather forecast for the day and also identifying if rain is a high possibility to necessitate the use of an umbrella.


  • An automated alert via the home connectivity technology is sounded to make sure everyone is on track for departure at 8am.
  • A reminder is set to collect bus passes and to ensure the sporting and music apparatuses for after school activities are organized, And a reminder as to whether it is bin day, or recycling bin week.
  • Everyone in the house has their wearable device, as emotion AI uses voice analysis beyond natural language processing (NLP) to detect the user’s emotion to better predict suggested treatments. Utilising machine learning, emotion AI technology is lent anthropomorphic qualities to collate data on human individuals to learn their specific emotive behaviors, thereby formulating a personalized experience.


  • The IoT blinds are shut and all not vital power is switched to off.
  • The smart phone is able to alert you to the best route to school and work, alerting you to possible areas of dense traffic or vehicle related incidents.
  • Leaving the house, using security technology, enabled with machine learning and biometrics.
  • Jumping into the car which has emotional processing capability using computer vision, and audio sensors to cater and adapt to the needs of the persons within the vehicle, such as detecting blue lips indicting that the temperature control is to be adjusted automatically. And the ability to monitor safe driving behavior.
  • During the day if any parcels are to be delivered the delivery man has access to a parcel door (the size of a cat door) that requires an access code and is monitored by smart security and surveillance cameras.


  • Access to your work building is via facial recognition security technology using deep sensory cameras to gain access to the lifts, the smart security knows which floor you want to be dropped at.
  • To gain access to your company’s network; the security technology uses your face, and this also grants multi-application access.
  • You open your tasks for the day as these have been categorized by your AI virtual personal assistant (VPA), which also determines your meetings scheduled into your calendar for the day and is able to send these through to your smart phone, which is attached to your wrist. This enables an understanding of your location requirements for all meetings. Your VPA can automatically set meetings up when required.
  • Your VPA can also help with providing research to solve business problems, or business analysis approach suggestions, by sourcing data from the BABOK or Agile extension.
  • Through-out the day your smart watch is reminding you to stand up, because it knows when you have seated too long, your body temperature is also monitored to assess your water consumption requirements through-out the day.


  • It’s lunch time, you tell your VPA you want lunch within close proximity of your office, with a specific price point and the cuisine type. The assistant researches options and returns the top three results. If you are having a social work gathering, it may be applicable to ensure delivery which can be arranged by your VPA, however if the meal is individually focused, then the smart watch will advise of the time it will be estimated to reach the destination. And that walking is the best option to take in terms of retrieving your lunch meal.


  • A healthy snack reminder is sent to your smart watch and remaining tasks that are outstanding for the day.


  • Home time; send a check message to the smart appliance fridge to identify any movement with milk or bread supplies. The ability to automatically order online for a click and collect at the supermarket.


  • 3D deep sensing camera technology for facial recognition will allow all members of the family to easily access the home, however non authorized persons will be denied access.
  • Time to seat everyone for a meal and then off to scheduled sporting activities.


With the adoption of wearable tech, advancements in home smart devices and improvements in facial recognition, combining these avenues currently provides a significant avenue for AI to simplify our lives.

Imagine what the future holds…


To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn




Relative Estimation: A Simple Yet Effective Method of Estimation.

by Shanil Wiratunga,

Business Analysts Pty Ltd Consultant


Many moons ago as a young techy I spent numerous hours and days with my teammates, working in laborious estimation sessions, trying to arrive at the most accurate estimate to develop features of a Software solution. From here we created Gantt charts and plans so detailed and lengthy, that they ended up looking like bowls of noodles. It didn’t stop there, as scope and requirement changes would creep in, we’d have to rework these estimates, and the lengthy, stripy charts all over again. But did this help to deliver our projects on time? Well the answer to that question is quite complicated. Yes, we delivered on time, but that is after having toiled away many weekends, public holidays and after office hours to ensure all the remaining work was squeezed in.

This pain staking process went on for many years to come until one day I had the opportunity to attend a seminar on Agile. That was my very first sneak peek at this wonderful world. I learnt many concepts, techniques, theories and most importantly a different way of estimating called ‘Relative Estimation’. I started my quest to learn more about this technique as much as I did on the other Agile concepts. The more I learnt through research and experience, the more I realised how simple, yet effective relative estimation is. It is something we always do. It second nature to us, and hence, the reason why it works so well too.

Before we delve deeper into this, let’s have a look at what estimation in is in the first place. Why it is so challenging?  If then, what is relative estimation? Why I think relative estimation is a more conducive and simple way of estimating in software development projects, as opposed to the conventional absolute estimation.



What Is estimation or absolute estimation?

In Software development projects estimation is used for predicting the most realistic amount of effort required to develop or maintain software, based on incomplete, uncertain, and clouded inputs. One of the key attributes that is predicted in the process of estimation is the time to pursue a course of action. From this teams estimate the cost associated to the time and the value associated with the suggested course of action.

There are many methods that are used for estimation as well. Some of them are:

  • Top down
  • Bottom up
  • Rough Order of Magnitude (ROM)
  • Rolling wave
  • Delphi
  • PERT

Why is absolute estimating so challenging?

Firstly, it must be said that we humans were not designed for absolute estimations. Our brain alone does not have the capability of doing absolute measurements and estimates. We tend to be optimistic or pessimistic more than realistic most of the time. However, it’s easier for humans to relate to similar items than to guess the actual size of things. Humans are designed to look at things comparatively, and relatively.

Secondly, in a world of rapidly changing technology, requirements and scope changes are inevitable. There are so many unknowns and moving parts in a typical project, which makes estimating with an acceptable level of accuracy a nightmare.

What is relative estimation?

Relative estimation is the process of estimating items, not by units of time or size separately, but rather by comparing how they are similar to each other in terms of complexity.  Agile alliance defines relative estimation as one of the several distinct flavours of estimation used in Agile teams, and consists of estimating tasks or user stories, not separately and in absolute units of time, but by comparison or by grouping of items of equivalent difficulty. Basically, relative estimation applies the principle that comparing is much quicker and more accurate than absolute estimation.

Let’s look at an example from what we do almost every day. Buying coffee.  When we go to a coffee shop to get a coffee the Barista asks us to choose the size of the coffee. Assuming we have never been to the coffee shop before we would not know the sizes of the cups, as large, medium or small. Either we could make a lucky guess thinking large would be too large or a small would be too small and settle for the medium, or we could look at the coffee cups kept on the coffee machine to determine the size required, thinking of the sizes of cups we have had in the past. It is very unlikely that we would think in absolute terms whether the small cup is 40 ml or 50 ml or the large is 100 ml before a decision is made. So, what have we done here? We have looked at the relative sizes of the coffee cups and made a relative estimate, to predict what might satisfy our coffee cravings for that moment in time.

Now let’s bake some cakes with relative estimation. Suppose you as a participant is required to bake 3 cakes for a Master Chef competition. The types of cakes to be baked are given by the judges, with 3 sample cakes already made in front of you. The three cakes are of three different sizes. You are supposed to make the 3 cakes exactly the same way as the sample cakes including the same dimensions, colours, flavours etc.  The judges say that there is however one condition that you need to be aware of. That is, you need to let them know how long it would take to bake the 3 cakes beforehand, and you need to stick to the time you commit to. The estimated time frame given would be validated by the expert judges, to ascertain if it’s realistic or too blown up.



So how can you do this? In the past you have made one of the cakes, which is the smallest out of the three, therefore you know how long it would take to make it.  Let say it’s one hour. That could be considered the length of the sprint. You have no idea how to make the other 2 cakes, and how long it would take, the ingredients required etc. But, can assume that the medium sized cake is three times the size of the small one, and the largest is about 5 times the size of the small one. Let’s classify these cakes using a unit of measurement called ‘Cake points’ looking at their relative sizes. The smallest cake could be given 10 cake points. Therefore, the medium sized cake could be given 30 cake points and the large cake 50 cake points. These numbers are just arbitrary numbers, and do not relate to a specific unit of size or time. Since it was said that the smallest cake i.e. 10 Cake points cake can be made in one hour which is the sprint duration, we could easily say that the velocity is 10 Cake points per Sprint. So what’s the total amount of work required for all 3 cakes looking at their relative sizes? It would be 10+30+50=90 Cake points. Given the velocity as 10 Cake points, a little bit of math can show you that you will need 9 sprints to make all 3 cakes. With one sprint being an hour’s duration, it could be determined that all these cakes would take 9 hours to make.   This is the essence of relative estimation. This theory can be applied to Software development projects as well. You could look at a feature and say “I think the feature A is twice as complex as feature B“, with the given knowledge by completing feature A in the past. There is no mention of time requirement, just that it is more complex than the other. Therefore, if feature A took 3 weeks to complete, it is reasonable to think that feature B would take 6 weeks. Isn’t that simple.

Estimation, whether relative or absolute, can be very challenging especially in the world of software development. Even though no estimation technique may be perfect, by comparison relative estimation is a simple, effective and ‘relatively’ accurate method of estimation.

To find out more about what’s happening in the world of Business Analysis follow us on LinkedIn


5000 Miles Dream

by Abi Sachithanantham,

Business Analysts Pty Ltd Consultant


To be precise, 5,424 miles is the distance from Colombo, Sri Lanka (where I used to live) to Brisbane, Australia (my new home). As everyone knows, moving to a completely different country is a BIG move in anyone’s life.

At 12:00a.m 1st January 2019, I made my first new year wish “To get a job in a well-reputed company which will help me to pursue my career in the Business Analysis domain”. From the next day onwards, I started my job hunting. Initially, my routine was to sit in front of my laptop from 10:00a.m. and apply for jobs till 5:00p.m. I have a passion towards Business Analysis and technology therefore, I didn’t want to give up on my dream.

On the 14th January 2019, I got an email from BAPL requesting to have an interview with me. I was excited, hopeful and also nervous. Coincidently, I’d started following Business Analysts Pty Ltd on LinkedIn when I was back in Sri Lanka; therefore, I knew a lot about who they are and what they do.

Business Analysts Pty Ltd is a Consulting Firm who demonstrates their expertise in Business Analysis with diverse clients across a multitude of domains. Following my successful Skype interview, I completed a Case Study to provide greater insights into my capabilities and was further interviewed by the Service Delivery and Engagement Managers.

On the 21st January 2019, I received a call from the BAPL Service Delivery Manager saying I got selected for the job offer. Even though I started to literally jump up and down, I was speechless. Now the moment of truth “Do you say yes to this offer?”, Of course, it’s a “Yes”, who wouldn’t?

I was eagerly waiting to start my first day at the office on the 22nd January 2019. I came into the office early and, with all my strength, tried to open the office door but it was very difficult to open. Later I realised I should use the access card to open the door before 8.30 a.m. I remembered the famous quote “Difficult situations often lead to beautiful destinations”, therefore I knew in a couple of minutes I’m going to start an exciting career progression with BAPL.


Everyone at the office, starting from administration to the discipline managers, are very friendly and welcomed me with open arms. It’s been exactly 110 days since I started my new journey with BAPL and here are 3 main unique working cultures I really admire about the company:

1. Supportive management

The four leadership roles in BAPL are the CEO, Service Delivery Manager, Practice Manager and Engagement Manager. They each have a vast knowledge of or experience in the Business Analysis Domain. Each of them are friendly but what makes them unique is they always think from the employee’s perspective. Starting from conducting inductions to advising on how to deal with different stakeholders. They are cultivating and improving my Business Analysis skills and capabilities daily. They are mainly focusing on getting me the right exposure with the right client engagement. They actively support each consultant to produce the expected deliverables and monitor them continuously to ensure the consultant is motivated and satisfied. Now I know I’m in safe hands where I can learn from them and contribute to the company in return.

2. Experts around me

As I mentioned before, BAPL consists of amazing consultants, who consult across different domains, provide a wealth of expertise and experience. Sometimes, I feel like I’m carrying an encyclopedia. You have a question, you get the answer in a couple of minutes! Isn’t it amazing? I consider BAPL to be a community of people with the same interest, who are willing to share and learn together. BAPL also conducts business development sessions and training programs to help consultants. Also, as a BAPL Consultant we get annual IIBA membership and all the industrial connections.

3. Diverse domains to explore

For over a decade, BAPL has built a strong relationship with diverse organisations starting from government bodies to corporates to not-for-profit organizations. With a good reputation in the market along with the expert team, BAPL has worked with many top organisations in Australia. Therefore, it’s really a chance for each consultant to strike gold. I get to work with the experts as well as work across various domains. I am currently on engagement with one of Australia’s leading Superannuation firms, with amazing people around me, and supporting me.


I’m not only lucky enough to obtain my dream role in a couple of weeks after arriving in Brisbane; but also to get an opportunity to work with the industry specialists who are supportive, friendly and well, experts. I’ve just begun my journey with BAPL but I’m looking forward to working with this amazing team. I arrived in Brisbane with the dream and now experiencing my dream come true.

You Don’t Need To Have Authority To Be A Leader

by Henry Elisher,

Business Analysts Pty Ltd Consultant



Business Analysts as leaders

You don’t need to have a title to be a leader, but, it is a choice. In much the same way, leadership is not a rank. Some individuals may have the title of implied leadership, and in fact we do end up doing what they say because they are authorities, but, if it were a choice, there are some of those in authority that we wouldn’t choose to follow.

Leadership can exist anywhere, in your personal life and within your social circles, in the community, and at the office. These are the people that can provide us with a sense of safety, assuredness or vision. They can also educate, empathise and provide the opportunities that we need in order to achieve and be successful, for both themselves and the collective. We know who these people are. If we thought about it we could all recognise those in our daily lives that we categorise as leaders and quite often we seek them out by our own volition.

Having authority on the other hand does not automatically extend to leadership. Authority that is exercised is a kind of legitimate power, and people follow figures exercising it because their position demands it, but this is done irrespective of the type of person that is holding that position. Authority which we bend to out of necessity. That’s not to say that people in authority aren’t or can’t be leaders, but, not ALL people in authority are leaders.

Business Analysts as leaders

I was listening to a TED talk by Simon Sinek on ‘What makes a good leader’. His idea was that the art of leadership comes from a certain place, from what people feel. Primarily he suggested that it was an aspect of trust and having a sense of co-operation that made people want to follow a leader. In our modern day working environments we are commonly surrounded by things that can threaten our position. Be that technological evolution, organisational restructures, economic fluctuations or competition. These variables are beyond our control, but there are variables that can be controlled. They are the conditions that exist from within an organisation. It’s here where leaders have the capacity to set the tone, to utilise their skill-set in order to provide a sense of assuredness and have those around them to combine their strengths to work in the face of danger, or in the face of change.

In our working environment as BA’s we operate at the coal face of change. We become part of, and the advocates for the very thing that people are fearful of. Change fosters uncertainty and change can promote fearful actions in people, manifesting itself in ways that we don’t automatically realise as fear, such as disinterest, disengagement, anger or detachment.

As Business Analysts we are in the right position to help people overcome their fears. We have all the traits of leadership at our disposal, most of which are interwoven into the skills that are required to be a Business Analyst. We need to use our influence to get others to accomplish a certain range of tasks, and on many occasions, these are tasks that people don’t enjoy doing. To utilise words a line from Henry Kissinger on leadership:

The task of a leader is to get his people from where they are to where they have not been’

Our primary roles as BA’s are to do the analysis, elicit the requirements and assist with creating the product or the solution that will delight the customer and make tasks simpler whilst also benefiting the organisation as a whole. We also work with business users and technical team simultaneously. When we look at it we have a quite a large sphere of influence and hence by assisting in the understanding of what needs to be accomplished, by assisting in establishing a clear vision of where we need to get to and by allowing people to own the result through their contribution and collaboration, that is what will promote empowerment. The will to do things and accomplish for something greater and to feel safe to do so in a working environment can only be fostered by leaders. Once again, by our very position as Business Analysts, we occupy the prime position to lead. The choice is therefore ours.

Back your soft skills

In an earlier blog that I wrote entitled ‘The T shape of you’, I talked about the importance of soft skills to the Business Analyst. Leadership was one of the qualities I mentioned as being pivotal in being able to provide great business analysis. More importantly, it’s a quality that’s ‘ready made to carry’, meaning that its readily transferable from one role to the next. Leadership itself however has its own soft skill set that a business analyst can both tap into and develop in their everyday working environment in order to heighten their leadership skills. Some of those skills are:


Communication: Be concise, set the tone and be transparent. Having your message understood is a critical tool in creating the vision and establishing buy-in. Utilise this with stakeholders, establish influence and aid collaboration

Negotiation and persuasion: By understanding perspectives, viewpoints and the emotions of stakeholders we can understand their reasoning for hesitancy or support. We can harness the momentum of supporters and overcome resistance by creating the vision of success and what it means to the individual

Empowerment: Information transitions through the Business Analyst constantly. From end users, to development teams to managers, we facilitate the knowledge transfer and as we know, knowledge is power. The more knowledge you have, the less the fear of the unknown

Problem solving: Being in centre of where the business and technology meet on a puzzle will allow us to gain perspective, think differently and act, in some ways as a solution provider. Again, providing us with the support to create the vision

Gear shifting: In our roles we transition through small issues to large, with end users to board members, through a plethora of meetings with interactions on various levels, we establish relationship, build links in our working environment and gain trust by ‘shifting gears’ through our days

Focus: Overarching objectives, business politics, competing agendas, unimportant wants. We provide focus in environments where resources can be scarce and competition for them his high. Staying focused and dedicated to the vision is of utmost importance

The skills of a business analyst are aligned with those who lead. How we utilise those skills and how we develop them will manifest in the ways that others operate either with you, or indeed, against you. If you want to take a group of people to a place they’ve never been before, then you’ll need someone to lead. A Business Analyst can very much be that leader.

Pitfalls of Process Modelling – Part 3

by Adwait Kulkarni,

Business Analysts Pty Ltd Consultant



In general, all the wordings in a process map should be clear & concise; even the font type and size should be consistent with organisation’s template.

  1. Event name: An event name should always be written in past tense, with the verb at the end
    .e.g. Request received, Message sent, Exception generated, etc. (Note: Message sender or Message receiver need not be mentioned as that is mentioned in the object it is coming from / going to)
  1. Activity name: An activity should be written in current tense and should start with a verb. The noun component of the activity can refer to a data input or output. The knowledge of these inputs and outputs is vital from analysis perspective and also from potential system design perspective.
    .e.g. Process Request, Send Message, etc.

    1. Avoid actors in the name as they are denoted by lanes, e.g. Process Request – by customer care agents
    2. Avoid mentioning Automatically / Manually. This can be denoted by system lanes (automatic tasks).
    3. Avoid punctuation in the activity name e.g. full stops
    4. First letters in the word should be capital in an activity, makes it easier to read.
  2. Process name: Process name should cover the entire scope of the process and should start with a verb as well. e.g. Resolve Customer Enquiry, Update Customer Details etc.



BPMN 2.0 provides objects which can be used for a specific scenario. Not all the objects provided in the set need to be used for an organisation. The business or PCoE can select the appropriate objects which will be sufficient to model the business processes. Some common mistakes and inconsistencies can be avoided by using the correct objects to depict a scenario.

  1. Pools & Lanes: A Pool is a participant (organisation) in a process
    1. Elaborating external pools (e.g. Customer, Banks etc.) should be avoided as we have no control over activities outside our organisation
    2. System lanes should not be used. An activity is always a function of a certain department/team within an organisation
    3. Communication going in/out of collapsed pools must be shown by using message flows. A sequence flow cannot cross the boundary of a pool or sub-process Refer to diagram 1.1


diagram 1.1


  1. Activity: An activity is a generic term for work that the organisation performs.
    1. An activity must be used before an event or a gateway. Events merely represents the outcome. A gateway only depicts the split between multiple flows. Refer to diagram 1.2.


diagram 1.2


  1. Event: An event is something that “happens” during the course of a business process
    1. A message start event must have an incoming message flow.
      Refer to diagram 1.3.

diagram 1.3


  1. A message end event must have an outgoing message flow
  2. There should be a start and an end event in a process; otherwise it’s hard to understand where the process starts and when the process finishes after certain activities are completed. Start and end events should align to the purpose of the process. The end event should reflect the purpose of the process being achieved. If this was achieved earlier in the process, either the scope is wrong, or we are modelling the next process.
  1. Gateway: A gateway splits or combines multiple process flows
    1. When a process splits a gateway must be used.Refer to diagram 1.4.
      When multiple flows can trigger a single activity, a gateway may not be used. A scenario, where multiple conditions need to be met to trigger a task, cannot be shown without a parallel gateway.


diagram 1.4


  1. A gateway is not a task; it cannot make decisions, nor can it send out messages. A task must precede a gateway. Refer to diagram 1.5.


diagram 1.5 

  1. If a parallel gateway splits the process, another parallel gateway must be used where these flows merge together
  2. A parallel gateway cannot be used to merge flows which were originally split using an exclusive or inclusive gateway.

This situation will become a deadlock. Refer to diagram 1.6



diagram 1.6



It is important to show all the possible scenarios that can occur during the End to end process. Processes should not show only the happy path but also the escalations and exceptions. E.g. in the diagram above, if there are any exceptions in the order, we need to go back to the customer to request correct order details. Refer to diagram 1.6


The aim of process modelling is to convey meaning. At the end of the day if the process models are not understood by the audience, they are useless even though they are technically correct. An analyst should educate the audience by taking them through the process models at least initially such that they understand the scenarios, exceptions and direction of the process flow. Any changes to the business process due to external or internal influences, should be communicated to the process analysts, so that these are reflected in the process models and the processes are always kept up to date.


If you would like to learn more about process modelling, Business Analysts Pty Ltd will be releasing an online BPMN Training course very soon! If you would like to receive formal training on this important BA tool set, register your interest at