You are on page 1of 57

- .

2012


. -

. -


: 3904
2012,

|2

The major difference between a thing that might go wrong and a thing that cannot
possibly go wrong is that when a thing that cannot possibly go wrong goes wrong it
usually turns out to be impossible to get at or repair
Douglas Adams

|3


...........................................................................................................................................................6
...............................................................................................................................8
1.

................................................................................................................................... 10

2.

ISO 31000:2009 ........................................................................................................ 13

3.

..................... 14

4.

............................................. 15

5.

............................................................................................ 16

6.

.......................................................................... 17

7.

................................................................................................................... 19
7.1.

- ............................................................................... 19

7.2.

................................................................................................ 20

7.3.

...................................................................................................................... 20

7.4.

2 (PRINCE2) ................................................................................................................................ 21

7.5.

................................................................................................................ 21

7.5.1.

....................................................................................................................................... 21

7.5.2.

........................................................................................................................ 22

7.5.3.

..................................................................................................................................... 22

7.5.4.

.................................................................................................................. 22

7.5.5.

......................................................................................................................................... 23

7.6.

........................................................................................................... 24

8.

( ) ..................................................................................... 25

9.

.................................................................................................................... 26

10.

.......................................................................................................... 27

11.

.................... 28

12.

(Risk Manager) ............................................................................... 28

13.

(Risk Management) ......................................................................... 30

14.

......................................................................................... 32

15.

......................................................... 34

16.

.................................................................................................. 35

16.1.

.................................... 36

16.2.

..................................................................................................... 37

|4

16.2.1.

.......................................................................................... 38

16.2.2.

(Risk Analysis) ................................................................................ 38

16.2.3.

................................................................................................... 43

16.3.

....................................................................................................... 46

16.4.

............................................................................. 47

16.5.

....................................................................................... 47

17.

..................................................................... 48

18.

.............................................................................................................. 48

19.

.................................................................................................................................. 50

20.

................................................................................................................................ 51

21.

, .......................................... 52

22.

............................................. 52

............................................................................................................................................................. 54
......................................................................................................................................... 55
................................................................................................................................................................. 56

|5

1

, , .


,
.
, ,

.

.

,
.

.
:
;

;
;
,
;
.
:
;
;
, ;
( ) ,
.

|6

( )

.

.
.
/
,
.
,
. , .

|7


. ,
. riscare
. , .2
, ,
, .
.
, . ,
. .
, , .
, .
, , ,
.

, ,
.
. ,

, (
- ),
.
. ,
, ()
() .
, (. Risk Management),
, ,
,
. ,
, , ,
, , ,
, .
.

.

.
ISO 31000:2009,
/ AS / NZS 4360:2004 (.

|8

Australian / New Zealand Standard for Risk Management). ,


.
,
ISO/IEC 73:2002 (. ISO/IEC Guide 73:2002 - Risk
management) - ISO, (angl.
International Organization for Standardization).
,
ISO 31000:2009.3
,
,

, .

|9

1.
.
: , , ,
McDonalds.
- ? --
, , :
.4

.
.
:

.5
:
,
,
,
.
. (),
.
. .
:
,
.

, .
,
.6
.
.
,
.
, .
. ,
, ,
.
, , .
.

| 10

.
.

,
.
: , , ,
, , , , ,
. , ,
,
.

.
.
, ,
.

, , / 1799 ,
Sarbanes Oxley Acts.
, ,
.. day-to-day .

1. 7

. RM -
.
,

.

| 11

-

.


.
- : 8
I.

()
X ..
. () ,

.
.
?
()

.
II.
-
.

.

.. .
.
III.

.
X ,
Y . ,
Y X.
,
. X,
.
?
X , ,

, X , .

| 12

IV.
-
-
.
7 .
, ,
, .

2. ISO 31000:2009
. ,
, ,
. ,
, , .
, .. ,
,
, , .
, ..
.
:
;
;
.
/ o AS / NZS 4360:2004,
, .
, ISO 31000:2009,
.
, , ,

, ,
, . ,
, .9

| 13

2.
, , ,
.
.
( ),
.

. , ()
(, ) ,
() (, )
. , ,
, .

3.

, .
,
.

3. , 10
:
;
;

| 14

;
;
;
;
;
;
, ;
;
,
, ;
, , , ; .

()
() , .
,
,
.
:
;
;
;
;
;
;
; .

4.

:

.

.
.


, ,
. up-to-the-minute

.

| 15

5.
I.
-
.
,
.
: 11



.
.
:

.

.
.

.
.



.
.
II.
-
- .
III.
-
- .
IV.
-
-
. ,

, .

| 16

V.
-
-
. .
, ,
,
. stand by
.

6.

, ,
, , , ,
.
, , ,
,
. .
,
.
,
. ,
:
;
;
;
.
,
. "
,
. ,
,
. : ,
, , ,
.

.
, , ,
.
.
,

| 17

, , , ,
, .

.
. :
, , ,
.
ISO 31000:2009, : , , , ,
, , , , , ,
, , . ,
, ,
.
,
.

| 18

7.

.
, , .
.
.
:12
-
.
-

- .
-
.
-
.
- , .
-
.
-
.
project :13
;
(
);

.

7.1. -
( ) ,
.14
( )

. ,
, ,
. ,
,
.15

| 19


, , . , ,

.16

7.2.
,
, , .
, ,
, .

7.3.
.
5 (4 )
.
:
e;
;
a ;
e ;
.
,
. .
2, 3 4 .
e . ,
, -, ,
, , , .
,17
.
( Rational Unified Process-RUP)
, .
,
, .
,
.
,
.
,
, , ,
.

| 20

7.4.2 (PRINCE2)
2 , 1996
.
. 2 ,
,

.18




,

,

.

,

.
2

.

.

7.5.
, : , .
,
:19
,
,
,
,
.

7.5.1.
. ,
.

| 21

.
.

:
.
.
.
long-lead .
, .
, , .
, , , .

7.5.2.
, . ,
.
, .

. :
, , .
.
.
.

7.5.3.

. ,
.
.

7.5.4.


, ,
.
.
:
( );
(, ,)
( );

( );

| 22


.
,
,
.
, :
,
,
.

,
.
, .
.
, , ,
. ,
.
.
, ,
. , , ,
.
.
,
. .
, .

7.5.5.
.
.
:
:
,
: ,
,
.

| 23

7.6.
,
.
- , .
:
, .
,
, .
, , , , , , ,
. ,
, , .
.
, ,
.
.
.
,
. :
,
,
,
.

| 24

8. ( )
, , , , ,
,
, .
,
. ,

,
. , , ,
,
.
"
, . ,
,
.
,
, ,
.

,
.
, , , ,
, ,
. ,
, ,
, .
,
.
, .


, ,
. ,
.

| 25

4.

9.
.
?
.
:20
?
?
?
?
?

.
? - .
. .
.
:
? (
?)
,
?

?
?
,
?
?

| 26

?
.
,
.
.
.
.
.
.
?
, ,
.
, ?
(,
)?

?
?
?
?
.
, ?

10.

, .

,
:
,
,
,
,
,
,
,
.

,
. ,

| 27


.


,
.
, .
.


.
.
.

11.

, :
1. .
, , .
2. ,
.
.
.
3. . , :
, , , .
4. .
.
5. . ?
? ? .
6. ,
.

12.

(Risk Manager)


.
.
. , ,
, .
. ,

| 28

shaker-mover . .
.
?
$100/
3 .

- .
.
,
.
. (
)
.
, :

,
,
, .21

.
.


. 22

5.

| 29

:
-
- .
- .
- , , ,
.
- ,
.
- .
- .
- feedback.

13.

(Risk Management)


, :


.

:
;

.
de facto
, / , ISO/IEC guide 73 Risk
Vocabulary.
:23


(ISO/IEC guide 73).
: .

.

.

.

| 30

.
.

.
,
.


.


.

. : ,
, , .

6. 24

| 31

7. Risk Management 25

:

,
,
, ,
/
,
,
,
.
(Risk Assesments)
ISO/IEC Guide 73
.

14.



.26

| 32

:
,
,
,
,
,

.
:
,

,
performance ()
,

.
:

,

,

.


.
:
- ,

,
.
(Risk Treatment)

.

, .
.

| 33


. .
.
:
,
,
.

15.



.

.
.

.
, :
;
, ;

;
;
.
, ,
, .

| 34

16.

,
,
, .

8.
ISO 31000:2009,
, / AS
/ NZS 4360:2004, , :
, , , .
:

;
;
;
;
.

, ,
:
;
.

| 35

9
:

9. ISO 31000:2009
, ,
,
, , , , , ,
.
, , , , , ..
.
,
, ,
, .. .

16.1.


. ,

| 36

,
,
.
,
,
, , ,
, ,
.
,
, .
,
. ,
:

;
;
;
;
;
;
;
; .

, , :

;
;
;
;
;
; .

16.2.

,
. , ,
, ,
.


.

| 37

, .. , ,
.
, ..
,
. .

16.2.1.

, , ,
, .
.
,
.
, :
, , , .. SWOT (. Streengths,
Weaknesses, Opportunities, Threats);
, .. FMEA (. Failure Mode and Effects
Analysis);
, .. FTA (. Fault Tree Analysis); .
, SWOT .
,
(, , ),
.

: , , .
, ,
,
.
, ..
. : , , , , .
, ,
, .

16.2.2.

(Risk Analysis)

, : ,
, .,
. : , , ,
, . ,

| 38

,
.
, ,
. ,
, , ..
.
,
, . ,
,
. ,
,
.
ISO 31000:2009,
. ,
,
. , ,
. ,
,
, .
,
,
.


. , , ,
, ,
,
.


.
.
:27
- .
,
, ,
.
-
.

| 39

-
,
, .
-
, , .

.
.
, (Compliance) - ,
, , , .

(Risk Description)

, ,
.
.

,
.

, /, .
.

.10 - 28

| 40


,
.
(downside risks) (upside risks) ,
( 11).
(high), (medium) (low)
( 12 13).

.11 29

12. 30

| 41

13. 31

.
: 32
Brainstormin
(Questionnaires)

. (Business studies which look at
eachbusiness process and describe both the internal processes and external factors which can influence
those processes)
(Industry benchmarking)
(Scenario analysis)
(Risk assessment workshops)
(Incident investigation)
(Auditing and inspection)
HAZOP ( - Hazard & Operability Studies)
.
: , ,
, , ,
, .
:

| 42


Analyse-It Software.Ltd
Bayesian Systems. Inc
GoldSim Consuling Group
Arthur D. Little, Inc


.
,
.
.

,
.
, , - ,
, .

.

16.2.3.


,
,
.
,
, .. .
, , , ..
, .

.
= *

| 43

14.
,

, .
, ,
Monte Carlo", . ,
,
.
Monte Carlo"
, . ,
,
,
.

| 44

15. Monte Carlo"


( )

16. Monte Carlo"


( ata )

12, , ,
. ,
Monte Carlo"
31.710 .

| 45

16.3.

,
- . ,
. ISO 31000:2009,
,
( ), ..
( ), .. .
, , ,
,
.

, .
( ) :
;
;
.
, , ,
., .
, , .
, .
,
.
.
.
,
.
( ) :
;
;
.
,
.
, ,
.
.

| 46

16.4.


,
, ,
, , ,
. ,
, ,
.
.
ISO 31000:2009, ,
, .
, , .
.
,
. ", (. Knowledge Base),

.
,
,
.

16.5.

, ,
, ,
, ,
, .
, .
,

, , ,
.
.
ISO 31000:2009, :
, , ,
, , .;
, ,
.;
;
;
; .

| 47

17.

Risk management -
, .

.


.
:
,

,
,
.

,
.

:
,
,
,
,
- .


.

18.

(DA)
(Decision analysis - DA)33, ,
.
.
, .
, . DA
.

| 48


: ,
, ? DA , ,
, .
(decision science), (Operations Research - OR),
(Management Science - MS). /
.34
DA .
. DA
:
,
, ,
,
,

,
,
,
,
.
DA :
.
.
DA , .
, .
1960 .
( 16).
.
, ,
.
, .
. ,
.
, .

| 49

17. 35

19.

.
? , :
: ,
.
: ,
.
.

. , , .
. -
, , .
(expected value EV), .
EV.
:
.
. ,
trade off , , ?
.
.

. :
.

| 50

20.

. ,
, ,
.
. ,
, . ,
, , .
,
, .
, ,
. , 7, SWOT ,
Strengths, Weaknesses, Opportunities Threats (, , ,
() ).
. ,
. ,
. .
.
, . ,
.

18. 36

| 51

21.

13, ,
.

19. , ISO
31000:2009

22.

,
, . , ,
. ,
,
.
,
, .
,
:37

| 52

;
, ;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
;
, ;
;
;
;
;
;
;
;
;
, ,
, , , , , ,
, ..

ISO 31000:2009 , ,
, . , ,
, , ,
, , .

| 53


, .
, , .

.
.
,
,
,
.
,
.

.
.
.
, . , :
, .
,
,
, .

,
. ,
, .
,
AS / NZ 4360:2004. ,
ISO 31000:2004
, .
,
.

| 54


John Schuyler, Risk and Decision Analysis in Projects, Second Edition, PMI, Aurora, Colorado, 2000;
Glenn Koller , Risk assessment and decision making in Business and Industry, A practical Guide, CRC Press, New
York, 1999;
Erik W. Larson and Clifford F. Gray, Project Management - Managing Risk, The Managerial Process, Fifth
Edition, Oregon State University, 2011
Tim Boyce, Commercial Risk Management - How to identify, mitigate and avoid the principal risks in any
project, Thorogood Ltd, London, 1995;
Tim Boyce, Successful Contract Administration, Hawksmere plc, London, 1994;
http://www.focusedperformance.com/
http://www.prres.net/Papers/Rossini_USING_SIMULATION_FOR_REAL_ESTATE_DECISION_MAKING.PDF,
http://www.ibm.com/developerworks/
http://www.mk.wikipedia.org/wiki/%D0%A0%D0%B0%D0%BA%D0%BE%D0%B2%D0%BE%D0%B4%D0%B5%D1
%9A%D0%B5_%D1%81%D0%BE_%D0%BF%D1%80%D0%BE%D0%B5%D0%BA%D1%82%D0%B8#cite_note-0
ISO/FDIS 31000 Risk management - Principles and guidelines, 2009;
ISO - Risk Management 31000 Standard, Ottawa February 27, 2008 -John Shortreed, Director, Institute for Risk
Research, University of Waterloo;
AS/NZS 4360 Risk Management, Cambera, 2004;
ISO Guide 73 - Risk Management - Vocabulary - Guidelines for Use in Standards, Geneva, 2002;
VesnaVrga, Upravljanje projektom, Hrvatska akademska i istraivaka mrea -CARNet ;
ISO - International Organization for Standardization, [http://www.iso.org/iso/home.html];
.

| 55

Erik W. Larson and Clifford F. Gray, Project Management - Managing Risk, The Managerial Process Fifth Edition, Oregon
State University, 2011, Page 210;
2
www.wikipedia.org
3
ISO/FDIS 31000 Risk management - Principles and guidelines, 2009 ;
4
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 4
5
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 4
6
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 5
7
http://www.ibm.com/developerworks/
8
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 9
9
ISO Guide 73 - Risk Management - Vocabulary - Guidelines for Use in Standards, Geneva, 2002; Page 120
10
VesnaVrga, Upravljanje projektom, Hrvatska akademska i istraivaka mrea -CARNet;
11
Tim Boyce, Successful Contract Administration, Hawksmere plc, London, 1994, Page 20
12
Commercial Risk Management, How to identify,mitigate and avoid the principal risks in any project Tim Boyce,
Thorogood Ltd, London, 1995Page 11
13
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 29
14
David I. Cleland, Roland Gareis (2006). Global project management handbook. McGraw-Hill Professional, 2006. ISBN 007-146045-4. p.1-4": Project management was formally recognized in the 1950s as a distinct discipline arising from the
management discipline
15
Paul C. Dinsmore et al (2005) The right projects done right! John Wiley and Sons, 2005. ISBN 0-7879-7113-8. p.82 and
further.
16
Lewis R. Ireland (2006) Project Management. McGraw-Hill Professional, 2006. ISBN 0-07-147160-X. p.110.
17
Winston W. Royce (1970). "Managing the Development of Large Software Systems" in: In: Technical Papers of Western
Electronic Show and Convention (WesCon) August 25-28, 1970, Los Angeles, USA.
18
OGC - PRINCE2 - Background
19
VA Office of Information and Technology (2003) Project Management Guide US DEPARTMENT OF VETERANS AFFAIRS. 3
March, 2005
20
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 31
21
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 41
22
http://www.focusedperformance.com/
23
ISO/IEC guide 73
24
http://www.focusedperformance.com/
25
http://www.focusedperformance.com/
26
Glenn Koller, Risk assessment and decision making in Business and Industry A practical Guide, CRC Press, New York,
1999, Page 65
27
Tim Boyce, Successful Contract Administration, Hawksmere plc, London, 1994, Page 49
28
Tim Boyce, Commercial Risk Management - How to identify,mitigate and avoid the principal risks in any project ,
Thorogood Ltd, London, 1995, Page 50
29
Tim Boyce, Commercial Risk Management - How to identify,mitigate and avoid the principal risks in any project ,
Thorogood Ltd, London, 1995, Page 57
30
Tim Boyce, Commercial Risk Management - How to identify,mitigate and avoid the principal risks in any project ,
Thorogood Ltd, London, 1995, Page 59-60
31
Tim Boyce, Commercial Risk Management - How to identify,mitigate and avoid the principal risks in any project ,
Thorogood Ltd, London, 1995 Page 62

| 56

32

Tim Boyce, Commercial Risk Management - How to identify,mitigate and avoid the principal risks in any project ,
Thorogood Ltd, London, 1995 Page 90
33
John Schuyler, Risk and Decision Analysis in Projects , Second Edition, PMI, Aurora, Colorado, 2000, Page 48
34
John Schuyler, Risk and Decision Analysis in Projects , Second Edition, PMI, Aurora, Colorado, 2000, Page 53
35
John Schuyler, Risk and Decision Analysis in Projects , Second Edition, PMI, Aurora, Colorado, 2000, Page 54
36
John Schuyler, Risk and Decision Analysis in Projects , Second Edition, PMI, Aurora, Colorado, 2000, Page 65
37
ISO - International Organization for Standardization, [http://www.iso.org/iso/home.html]

| 57