Project risk management
Risk management activities are applied to project management. Project risk is defined by PMI as, "an uncertain event or condition that, if it occurs, has a positive or negative effect on a project’s objectives."
With the above disciplines of Operational, Financial and Underwriting risk management, the concepts of risk, risk management and individual risks are nearly interchangeable; being either personnel or monetary impacts respectively. Impacts in project risk management are more diverse, overlapping monetary, schedule, capability, quality and engineering disciplines. For this reason, in project risk management, it is necessary to specify the differences (paraphrased from the "Department of Defense Risk, Issue, and Opportunity Management Guide for Defense Acquisition Programs"):
- Risk Management: Organizational policy for optimizing investments and (individual) risks to minimize the possibility of failure.
- Risk: The likelihood that a project will fail to meet its objectives.
- A risk: A single action, event or hardware component that contributes to an effort's "Risk."
An improvement on the PMBOK definition of risk management is to add a future date to the definition of a risk. Mathematically, this is expressed as a probability multiplied by an impact, with the inclusion of a future impact date and critical dates. This addition of future dates allows predictive approaches.
Good Project Risk Management depends on supporting organizational factors, having clear roles and responsibilities, and technical analysis.
Chronologically, Project Risk Management may begin in recognizing a threat, or by examining an opportunity. For example, these may be competitor developments or novel products. Due to lack of definition, this is frequently performed qualitatively, or semi-quantitatively, using product or averaging models. This approach is used to prioritize possible solutions, where necessary.
Once an approach is selected, more familiar risk management tools and a general project risk management process may be used for the new projects:
- A Planning risk management
- Risk identification and monetary identification
- Performing qualitative risk analysis
- Communicating the risk to stakeholders and the funders of the project
- Refining or iterating the risk based on research and new information
- Monitoring and controlling risks
Finally, risks must be integrated to provide a complete picture, so projects should be integrated into enterprise wide risk management, to seize opportunities related to the achievement of their objectives.
Project risk management tools
In order to make project management effective, the managers use risk management tools. It is necessary to assume the measures referring to the same risk of the project and accomplishing its objectives.
The project risk management (PRM) system should be based on the competences of the employees willing to use them to achieve the project’s goal. The system should track down all the processes and their exposure which occur in the project, as well as the circumstances that generate risk and determine their effects. Nowadays, the Big Data (BD) analysis appears an emerging method to create knowledge from the data being generated by different sources in production processes. According to Górecki, the BD seems to be the adequate tool for PRM.
- Committee of Sponsoring Organizations of the Treadway Commission
- ISO 31000
- Operational risk management
- Risk Management
- Risk appetite
- Risk management tools
- "Practice Standard Project Risk Management". PMI.
- Department of Defense Risk, Issue, and Opportunity Management Guide for Defense Acquisition Programs, June 2015