Professional Documents
Culture Documents
PORTFOLIO GOVERNANCE
The purpose of Portfolio Governance is to ensure that the portfolio is managed in an appropriate way.
This includes meeting the legal, regulatory, and organizational governance requirements.
The role of risk management within portfolio governance is to use the organization’s potential to
(a) efficiently secure adequate governance and management practices
(b) (b) avoid or mitigate threats that could lead to misconduct or ineffective management of the portfolio
PORTFOLIO CAPACITY AND CAPABILITY MANAGEMENT
Risk management in the context of Portfolio Capacity and Capability Management focuses on the
mutual impact of the portfolio and related operations.
In addition, risk management in the context of capacity and capability management ensures the
proper use and development of capital and assets entrusted to the portfolio manager for the
component programs and projects.
PLANNING PROCESSES
The selection of the overall risk management approach is one of the key planning decisions. It involves
the analysis of risks that could potentially impact the effectiveness of the risk management processes.
The key areas of planning that also include risk management practices are:
Integrity of the planning processes and the resulting plans
Selection of the management approaches in all Knowledge Areas relevant to the project
Estimation activities.
It is typical that processes in this Process Group lead to the identification of a high number of risks
because these processes include analytical work necessary for planning. It is important to ensure that
risk identification becomes a natural part of every process in this Process Group.
EXECUTING PROCESSES
Executing processes are performed to complete the work defined in the project
management plan to satisfy the project requirements and achieve the objectives of the
project.
Successful risk management depends on the flow of knowledge within the project and the
organizations involved in its execution.
Risk management practices are most effective when supported by a culture that embraces
proactive behavior, open communication, organizational learning, and continuous
improvement.
This means that integration with team building and management, quality management,
execution of stakeholder engagement strategies, and communication processes are
essential.
MONITORING AND CONTROLLING PROCESSES
Monitoring and Controlling processes track, review, and regulate the progress and
performance of the project, identify the areas in which changes to the plan are required, and
initiate the corresponding changes.
Risk management supports efforts to ensure integrity and reliability of reporting. On the
other hand, risk identification, risk analysis, and risk monitoring processes use the
performance data and information as key inputs that help identify, analyze, and monitor
risks.
CLOSING PROCESSES
Closing processes are performed to formally complete or close the project, phase, or contract.
Where risk management is concerned, part of the closing practices involve securing knowledge
that may be useful in future project phases, projects, or other activities of the organization.
The remaining known risks that could impact the realization of benefits are handed over prior
to project closure.
Q1
You have identified a risk that may cause safety concerns for the workers completing the
task. You’ve decided to hire a subcontractor to complete this work because the risk is
too great to accept internally. Which risk response is this?
Mitigate
Transfer
Avoid
Accept
Q2
Risk manager
Project manager
Project team members
Project sponsors
Q3
A project’s risk manager successfully developed the risk management plan and the risk
register. Furthermore, the risk analysis and the risk response planning are finalized to
deal with the high and medium priority risks. How the risk manager and team members
will deal with the remaining low priority risks?
Update the risk management plan with the low priority risks
Add the risks to a watch list for periodic monitoring
Remove the risks from the risk register
Create risk responses later, as time allows
Q6
During a status meeting, a functional manager complains that the server back up failed,
impacting the department. This was a known risk documented in the risk register as an
accepted risk. After reviewing the meeting minutes, it is determined that the functional
manager hadn’t participated in the risk planning phase. Which of the identification
methods should have been applied?
Quantitative analysis
Qualitative analysis
Stakeholder analysis
Sensitivity analysis
Q8
You have been assigned as a project manager to a software project. Before creating your
product, you decided to create a prototype to ensure that it is acceptable to
stakeholders. This is an example of:
Risk Transference
Risk acceptance
Risk mitigation
Risk avoidance
Q9
Opportunity/Response Strategy
Risk/attitudes
Risk/Exposure
Threats/attitudes
Q10
You have been managing a top-secret government project, which has been progressing
as planned until recently. Suddenly, one of your team members calls and informs you
that the project has encountered an unexpected major problem that was not included in
the risk register. What should be your first course of action?
A project lost 10 productive days due to bad weather. In order to make up for the lost
time, the project management team calls for an emergency meeting and decides to
apply fast-tracking as a schedule compression technique. This is an example of:
Work-around
Risk escalation
Risk Mitigation
Risk avoidance
Q12
A risk manager creates a survey for project stakeholders to obtain their opinions on high
levels of risk. key questions in the survey address acceptable levels of cost increases and
schedule delays. What is the risk manager trying to determine?
Risk urgency
Risk threshold
Risk exposure
Risk attitude
Q14
What is the best method a risk manager should use to initially define the stakeholders’
risk appetite?
A project sponsor believes that the only risks to the project are financial risks and no
need for additional risk management. As a project manager, which of the following tools
and techniques could you use to identify other potential topics such as technical,
Communication, project management, and internal and external risks?
To obtain agreement on project risk response strategies by the stakeholders, the risk
response strategies should be :
A team member has identified a risk and the project manager decides to take no action.
This is an example of:
Risk Acceptance
Risk Avoidance
Risk mitigation
Risk Exploitation
Q19
A project manager assigns a risk owner during which of the following processes?
Which of the following tools are used to identify the probability of achieving specific
cost targets?
If the contingency reserves are depleted before the project is completed. What
recommendations could be implemented to prevent this from recurring?
Which of the following represents the main goals of the Risk audit?
Document what went well and not so well with the risk management process, and
recommend action to improve
Document and assess the newly identified risks and take the required actions
Assess the risks that have occurred and take the required actions
Examine the effectiveness of project team members and take the required actions
Q24
If the project manager wants to review the risk response effectiveness from past
projects, from which of the following will find these?
What is the primary difference between a risk audit and a risk reassessment?
A risk reassessment is conducted at the completion of a major phase; audits are conducted
after the project is complete
Risk reassessments are regularly scheduled; risk audits are performed as defined in the
project's risk management plan
Project stakeholders conduct risk audits; management conducts reassessments
There is no difference; they are virtually the same
Q26
You are managing a shopping center construction project. Which of the following
provide the outcomes to update the project risk documents as a result of the control risk
process
A risk manager works with the project team, senior management team, subject matter
experts and other stakeholders to identify the project risks. Which of the following
tools/methods from the risk management plan can be used to identify a risk, which is
based on project objectives by category?
Affinity diagram
Decision tree analysis
Work breakdown structure
Risk breakdown structure
Q28
A risk management professional is currently facilitating the risk planning process with
the project team. To increase the breadth of considered risks, the team wants to include
high-level and strategic project risks. What should the risk management professional do
next?
The risk manager notices that in their workshops, most of the risks identified are
threats. What should the risk manager do to increase the number of opportunities
identified?
Which among the following refers to a structured description of a risk which separates
cause, effect, and risk?
After starting a new pipeline project, a risk manager schedules an initial meeting with
the project sponsor. For the meeting, the project sponsor requests a presentation of the
risks that have the most influence (positive or negative) on achieving the project
objectives. What should the risk manager complete before the meeting?
A project manager has finished the project charter for a project and has now moved into
the planning phase. In the first planning meeting, the project manager is trying to
determine the risk tolerance and risk attitudes of the project's key stakeholders. What is
the first resource the project manager should reference?
A project team is working on a risk response strategy by evaluating every risk and
coming up with suitable response strategies. However, one particular risk with a
negative impact cannot be avoided or mitigated. Furthermore, there is no way to
transfer risk by outsourcing or buying insurance. What is the best the team can do about
the risk?
Prompt lists
Nominal group technique
Interviews
Delphi technique
Q36
During a meeting to develop the risk management plan, the risk manager recognizes
that risks may be identified that could also impact other projects that the company is
pursuing. What should the risk manager do?
A list of risks was Identified that could occur during the design phase. Now, the team
finished the design phase, and those risks did not materialize. What should the project
manager do next?
Remove the risk from the list as they are no longer applicable
Reevaluate those risks' severity, and update the risk register
Close the risks and update their status in the risk register
Use their contingency with other risks that are still open
Q38
A risk manager of a complex project has identified a risk and believes a deeper
understanding of the source and likelihood is necessary. How should the risk manager
proceed?
The risk manager notices that in their workshops, most of the risks identified are
threats. What should the risk manager do to increase the number of opportunities
identified?
A risk manager completed risk response planning for a project that is currently in the
execution phase. During a periodic review of the risk register, the project manager
recognizes that some key secondary risks have not been considered. Who should the
project manager hold accountable for missing the risks?
A risk manager faces resistance as they try to implement the project's risk strategy.
Some members of the project team believe it is a waste of time and money. What
should the risk manager do?
When selecting strategies as an activity of Plan Risk Response, what is the overall goal?
You would like a method that would allow participants to anonymously identify risk
events. What risk identification method could you use?
The project risk manager is in the process of identifying risks. The project sponsor has
communicated that there is an influential/ stakeholder who has a senior management
position. The other stakeholders do not feel comfortable speaking in front of this
stakeholder. What should the project risk manager do next to identify risks?
Project stakeholders can often be risk-averse with little to no knowledge of the risk
process. How should a risk manager increase stakeholder risk appetite?
The project director and project manager have met with the board and determined that
the project has depleted the entire contingency reserve and has started eroding the
profit margin. The project manager would like the risk manager to take full advantage of
opportunities. Which response should the risk manager take?
Transfer
Exploit
Accept
Mitigate
Q47
A project manager has determined that an activity is too complex to complete internally,
so they hire a licensed contractor to complete the work. What is the project manager
performing in this situation?
Risk avoidance
Risk mitigation
Risk transfer
Risk acceptance
Q48
You are the project manager for your organization. You have determined that an activity
is too dangerous to complete internally so you hire a licensed contractor to complete the
work. The contractor, however, may not complete the assigned work on time which
could cause delays in subsequent work beginning. This is an example of what type of
risk event?
Trigger conditions
Fallback plans
Transference
Secondary risk
Q49
A project manager is educating the project team on risk management regarding the role
of threats and opportunities. The team decides to log the opportunities in the current
project's risk register to try to maximize their chances of occurrence. What should the
project team do next?
Update the project management plan to ensure the results of the opportunities are
captured
Log the threats in the risk register to try to maximize the probability of occurrence
Log the threats in the risk register to try to minimize the probability of occurrence
Conduct strengths, weaknesses, opportunities, and threats (SWOT) analysis
Q50
Members of a project team are not taking their risk management responsibilities
seriously. They do not consider risk management as primary to the project's success and
do not believe that the benefits are significant. What should the risk manager do?
Ensure that risk management responsibilities are clearly identified in the risk management
plan
Schedule a meeting to review and develop realistic risk thresholds with the project team
Motivate and in influence the project team with risk engagement activities like workshops
Ensure that the risk language used by all stakeholders is consistent with the risk
management plan
Q51
The project manager is reviewing the lessons lamed from a previous similar project. The
previous project was delayed due to the delay in the delivery of a gas turbine generator
(GTG). Construction of the previous project had to be shut down unexpectedly to wait
for the late delivery of the GTG. What should the project manager do first?
A project manager has just been assigned to a new project. The project manager has been
tasked by the project sponsor to ensure the project risks are closely managed. The project
manager starts with developing the risk management plan. What is the expected outcome
of developing the risk management plan?
Being able to monitor and control risks throughout the project
Defining how risk management Will be executed throughout the project
Having the ability to identify risks throughout the project
Documenting the communication strategy for risks throughout the project
Q53
Quantitative
Iterative
Mandatory
Incremental
Q54
The project team has correctly identified, assessed, and planned responses for a
project's risks. The risk manager is required to prepare a quarterly report on the
performance of managing the risks. What are two options the risk manager should
consult for the analysis? (Choose two.)
A project manager wants to work on understanding the project risks. The project
manager works with the integrated project team to develop the risk handling strategies
for the Identified risks. How should the project manager work with these risk-handling
strategies?
A risk manager notices that a risk owner is facing challenges implementing their
response strategy and the costs are significantly exceeding expectations. What is the
first thing the risk manager should do?
Risk thresholds
Risk response strategies
Risk breakdown structure (RBS)
Risk management reports
Q58
The risk manager is facilitating risk planning activities with the team. The team is
documenting all the checkpoints along the way that might indicate delays on critical
deliverables. What is this an example of?
Risk responses
Risk registers
Risk triggers
Risk categories
Q59
The risk manager notices that in their workshops, most of the risks identified are
threats. What should the risk manager do to increase the number of opportunities
identified?
What is the best method a risk manager should use to initially define the stakeholders’
risk appetite?
During the initial planning of a project, a risk is identified for which the risk manager has
defined a mitigation strategy. Later during project execution, this risk still leaves
substantial residual risk. What should the risk manager do to handle this situation?
A project manager is working on a high-priority and high-profile project. The project team had identified
three opportunities, and after analysis, risk responses were recorded. Although risk responses were
adequate for the identified opportunities, two of those opportunities were not acted upon. During the
risk audit, the project manager found out that several of the planned risk responses were not
implemented. What should the project manager have done to avoid this?
A project manager is developing the risk register and works with the team to analyze
risks and determine their probability and impact. There is valuable historical data
available that may be used to simulate the overall risk outcome. Which type of analysis
should the project manager use in this instance?
Perform a sensitivity analysis and determine the correct priority of every identified risk
Agree with the SME, treat every risk with equal priority, and inform all stakeholders
Mark every identified risk as an extremely high priority and any future risks as a lower
priority
Ask the project sponsor if every risk in the risk register can have the same priority
Q65
A risk manager is managing risks in a project. During the initial stages of project
execution, a new risk is identified, there is a very small chance that this risk will occur
and even if it occurs, the impact would be low. What should the risk manager do with
this risk?
The project manager performed a variance analysis on the project during the execution
phase. The variances were shown as increasing. What does this result imply?
An agriculture government agency faces different challenges with farmers and landlords
in implementing its ambitious growth strategy. The agency decided to establish an
enterprise risk management unit to identify risks, analyze risks, and provide a handbook
showing how to handle the surrounding uncertainty. What should the risk management
expert recommend the agency do first to identify risks and develop the handbook?
Prepare a list of the key resources that will be used to compile a risk management plan
Follow standard risk identification tools dedicated for agriculture and tailor them to the
environment
Hire an agriculture expert who can develop the required handbook and discuss it with the
agriculture minister
Conduct meetings, facilitated workshops, and interviews with stakeholders to identify
potential risks
Q70
A home solar panel project has many internal and external stakeholders including
households, businesses, community groups, electric utility companies, local government
officials, landlords, and investors. What should the project manager do when engaging
stakeholders?
What should be used to determine how often a project's risk register should be updated
or reviewed in a given year when the project is in an industry with a very high business
rhythm?