Professional Documents
Culture Documents
Project Risk Management: Instructor Hamza Ejaz
Project Risk Management: Instructor Hamza Ejaz
4
Global Issues
• Many people around the world suffered from financial losses
as various financial markets dropped in the fall of 2008, even
after the $700 billion bailout bill was passed by the U.S.
Congress
• According to a global survey of 316 financial services
executives, over 70 percent of respondents believed that the
losses stemming from the credit crisis were largely due to
failures to address risk management issues
• Worldwide banking and insurance sectors will spend about
$78.6 billion on risk information technologies and services in
2015, growing to $96.3 billion by 2018
Project Risk Management
Risk Management Overview
• What is risk?
Risk: An uncertain event or condition that, if it occurs, has a positive
or negative effect on a project’s objectives
VENTURE OUTCOME
(Project) (Products)
FAVORABLE
UNKNOWNS (Opportunity)
(Uncertainty)
UNFAVORABLE
(Risks)
6
Negative Risk
• A dictionary definition of risk is “the possibility
of loss or injury”
• Negative risk involves understanding potential
problems that might occur in the project and
how they might impede project success
• Negative risk management is like a form of
insurance; it is an investment
Risk Can Be Positive
• Positive risks are risks that result in good things
happening; sometimes called opportunities
• A general definition of project risk is an
uncertainty that can have a negative or positive
effect on meeting project objectives
• The goal of project risk management is to
minimize potential negative risks while
maximizing potential positive risks
8
Project Risk Management
Risk Management Overview
Project Lifecycle
Risk vs. Amount at Stake
I
CONCEPT DEVELOPMENT IMPLEMENT CLOSE
N
PHASE PHASE PHASE PHASE
C
R $
OPPORTUNITY AND RISK
E
A V
S A
PERIOD WHEN
I L
HIGHEST RISKS
N U
ARE INCURRED
G E
R PERIOD OF
I HIGHEST
RISK IMPACT
S
AMOUNT AT STAKE
K
9
Project Risk Management
Risk Management Overview
PROJECT
MANAGEMENT
INTEGRATION
INFORMATION /
SCOPE
COMMUNICATIONS
Life Cycle and
Expectations Environment Variables
Ideas, Directives, Data
Feasibility
Exchange Accuracy
QUALITY
Requirements PROJECT Availability RESOURCE
Standards RISK Productivity
CONTRACT /
TIME
COST PROCUREMENT
11
Project Risk Management
Risk Management Overview
12
Project Risk Management
Risk Management Overview
13
Project Risk Management
Risk Management Overview
• Risks vs Issues
– Many projects use risk and issue logs. Sometimes the management of
issues and risks can become confusing.
– The PMBOK definition of an Issue:
• A point or matter in question or in dispute, or a point or matter that is
not settled and is under discussion or over which there are opposing
views or disagreements.
– If you have the freedom to define these items and their logs and the
subsequent management of risks and issues, then great. Handle risks and
issues as you desire. My suggestion is to follow as closely as possible the
PMBOK guidelines.
– If you are dictated by the company, organization, or management team to
handle risks and issues in a particular manner, then follow these
guidelines. Document in your Project Management Plan, Risk
Management Plan, and or Issue Management Plan how you will handle
risks and issues. 14
Project Risk Management
Risk Identification
15
Project Risk Management
Risk Identification
17
Project Risk Management
Risk Identification
project
• Types of risk
– Technical
– External
– Organizational
– Project Management
Note: These are example types of risk and this list can be modified to
meet the needs of your project
PROJECT
RBS
PROJECT
TECHNICAL EXTERNAL ORGANIZATIONAL
MANAGEMENT
SUBCONTRACTORS PROJECT
REQUIREMENTS ESTIMATING
& SUPPLIERS DEPENDENCIES
COMPLEXITY &
MARKET FUNDING CONTROLLING
INTERFACES
PERFORMANCES
& RELIABILITY CUSTOMER PRIORITIZATION COMMUNICATIONS
20
categories will vary across different types of projects.
Project Risk Management
Risk Identification
22
Project Risk Management
Risk Identification
• Event driven
– A risk event happens and becomes part of the risk register
23
Project Risk Management
Risk Identification
• Brainstorming
24
Project Risk Management
Risk Identification
• Nominal Group
– Then within each area have each person write at least 3-5 risk
events
• Delphi technique
– Identify a facilitator
– The facilitator then identifies qualified experts to participate
– The facilitator poses questions to the experts individually
– The facilitator then analyzes the results to identify common
themes
– The results are then shared with the experts for validation
– The list is then refined and again shared with the panel
– The facilitator the creates a single results document
26
Project Risk Management
Risk Identification
• Mind mapping
– Begin with a category of risk in the center represented by a circle
– Major risks for that category are represented by lines connecting
with the circle
– For each major risk identify smaller risks that are part of that risk
– Do not judge or evaluate at this time
– Continue until no more risks can be identified
27
Bonus Slide
3 Rules of Management
28 28
Project Risk Management
Risk Quantification
29
Project Risk Management
Risk Identification
30
Project Risk Management
Risk Quantification
31
Project Risk Management
Risk Quantification
33
Project Risk Management
Risk Quantification
• Probability
– Can be done in a basic approach by developing a simple estimate of the probability that an
event will be late in delivery
• Ed says it is 50% likely this task will be late
• Probability of Event 1 x Probability of Event 2 = Probability
– Can be done in a more complex manner by using weighted averages
• Joe says 35% chance of being late
• Mary says 40% chance of being late
• Ed says 50% chance of being late
• Joe gets twice as much credit because he knows more about the situation
• The probability is: ((2 x 35) + (40) + (50)) / 4 = 40%
– Quantifying risk probability can become quite complex, there are many resources to assist
you with more detailed approaches (books, internet research, multi-day training,
consultants).
34
Probability and Impact Plots
Rate each
risk on
scales then
plot on
matrix
Develop
mitigation
technique
for risks
above
tolerance
Project Risk Management
Risk Quantification
• Assessing Impact
– Schedule Tools:
• Network analysis (relationships, durations, critical path(s),
near critical paths, hard constraints)
• Resources (availability, competency, productivity)
• Estimates (accuracy, source, method)
– Cost tools:
• WBS
• Requirement definition
• Estimating methodologies
• Expected monetary value
• Decision trees
• Financial analysis
36
Project Risk Management
Risk Quantification
Risk Response
38
Project Risk Management
Risk Response
39
Project Risk Management
Risk Response
41
Project Risk Management
Risk Control
42
Project Risk Management
Risk Control
Example Log
Risk ID Sequential number assigned
Functional Area Identify the functional business areas potentially impacted by the risk
Risk Category Cost; External; Schedule; Technical; Resources; Operational
Risk Description Description of the risk and the impact of it
Date Identified Date the risk was identified
Raised By Who identified the risk
Date Assigned Date the risk was assigned
Assigned To Who the risk was assigned to
Probability 1, 2, 3, 4
Potential Impact 1, 2, 3, 4
Risk Factor (P*I) Probability * Impact
Positive or Negative Impact Will the potential impact of the risk have a Positive, Negative, Both or Unknown impact if realized?
Response Category Acceptance; Mitigation; Transfer; Avoidance
Status/Comments Status of risk and update/comments about it
Trigger Preliminary event that will indicate the risk is about to take place
Proposed/Actual Resolution Risk Response plan
Contingency Plan Alternate Plan if Risk Response fails
44
Residual and Secondary Risks
• It’s also important to identify residual and
secondary risks
• Residual risks are risks that remain after all of
the response strategies have been
implemented
• Secondary risks are a direct result of
implementing a risk response
Using Software to Assist in Project Risk
Management
• Risk registers can be created in a simple Word
or Excel file or as part of a database
• More sophisticated risk management software,
such as Monte Carlo simulation tools, help in
analyzing project risks
• You can purchase add-ons for Excel and Project
2013 to perform simulations
Questions?