Professional Documents
Culture Documents
Risk management is a systematic process of identifying, analysing and responding to project risk.’ This
may be broken down into a number of sub-processes are used as the basis for the five-stage model in this
guide:
1. Risk identification
2. Qualitative risk analysis
3. Quantitative risk assessment
4. Risk response planning
5. Risk monitoring and control
Identifying risk
Risk identification is of course the first step in managing risk. Risk identification and analysis should be
ongoing throughout the project but particularly at project start-up and stage boundaries. You are likely to
start looking for risks relating to:
You should understand the importance of the critical path through the plan (the shortest time needed to
complete the project) and the nature of task interdependencies. the following are areas which are likely to
have associated risks:
Tasks that rely on the completion of other work before they can begin
Tasks that none of the project team has ever done before
Use of unfamiliar technologies
Tasks that involve third parties
Migration of data from one system to another
Stakeholders
In any undertaking involving a substantial amount of change there will undoubtedly be people who
are adversely affected or who fear they will be disadvantaged by the change. These people can be
termed adverse stakeholders and they may present a risk to your project. The risk may be in terms of
direct opposition to the project at the initiation stage or a ‘war of attrition’ during the course of the
project.
Having identified a range of risks we now need to consider which are the most serious in order to
determine where to focus our attention and resources
Time
Cost
Quality.
Use enough categories so that you can be specific but not so many that you waste time arguing about
details that won’t actually affect your actions
To move from qualitative to quantitative risk assessment, you can assign a numeric scale and, by using a
‘traffic light’ system – assigning red, amber or green against pre-determined value range – break the risks
into groups requiring different response strategies. The red, amber, green designation is known as a ‘RAG
statuses and was referred to in the risk log section.
This table uses the same linear scale for both axes
The following table suggests a general measure of impact in the education environment.
Having identified ‘green’ and ‘red’ risks you now need to look at what your response will be to each of
the red risks. There are a number of fairly standard definitions of response types that can be summed up
as follows:
Risk deferral
You need to keep track of the identified risks, monitor the effectiveness of your risk responses and
identify new or changed risks. This means having effective reporting mechanisms in place and ensuring
that risk is covered in all key reports and reviews. Effective monitoring and control also involves creating
the right conditions for openness and transparency in the project. A key role of the project managers is
also to communicate risk to the stakeholders. Senior managers hate surprises so you need to keep
reminding them ‘these are the top five risks we are facing at the moment…’ so that when one of the risks
occurs they are prepared for it. Risk analysis and management is an important part of assessing whether
the business case for a project really stacks up. Your risk identification may show more serious risks than
had been anticipated – this means the business case must be reviewed.
TYPICAL RISK MANAGEMENT MODEL FIG 1
Generally , risk is inherent and unavoidable.Risk management simply aids in better decision-
makings by running projects in the ‘real’ world. Plans usually are formulated to meet ideal
situations assuming everything will be perfect.
This results in senior managers pushing project managers to have a more ‘can do’ attitude. If the
latter undertakes an analysis and comes up with a realistic estimate of timescale and costs then
one or other is cut, the senior manager responsible must bear the blame when the project cost
budget is surpassed. Senior managers should take responsibility for project failure.
TYPES OF RISK MODELS
Big financial intermediary firms use risk modeling to help portfolio managers assess the amount
of capital reserves to maintain, and to help guide their purchases and sales of various classes
of financial assets.
FACTORS TO CONSIDER IN RISK MANAGEMENT.
This involves to:
1. Identify
2. Measure
3. Manage
4. Monitor
5. Report
REFERENCES
o https://www.jisc.ac.uk/guides/risk-management/five-step-model
o 1 Benoît Mandelbrot and Richard L. Hudson (2006). The Misbehavior of Markets: A
Fractal View of Financial Turbulence. Basic Books. ISBN 978-0-465-04357-6.