Intro to Project Management: Project Risk Management - Risk Register, ID Description Cause Probability Impact Score Response Owner

What This Is

A Risk Register is a document that helps project managers identify, assess, and prioritize risks that could impact the project's objectives. It's a crucial tool for successful project delivery, as it enables project managers to proactively plan responses to potential risks, reducing the likelihood of negative consequences. For example, when building a bridge, a project manager might identify risks such as inclement weather, material delays, or labor shortages. By documenting these risks in a Risk Register, the project manager can develop strategies to mitigate or manage them, ensuring the project stays on track.

Key Terms & Formulas

• Risk Register: A document that lists identified risks, their causes, probabilities, impacts, scores, responses, and owners.
• Risk: An uncertain event or condition that, if it occurs, could have a positive or negative impact on the project.
• Cause: The underlying reason for a risk.
• Probability: The likelihood of a risk occurring, expressed as a percentage (e.g., 20%).
• Impact: The potential effect of a risk on the project, expressed as a percentage (e.g., 30%).
• Score: The product of probability and impact (e.g., 20% × 30% = 6%).
• Response: A planned action to mitigate or manage a risk.
• Owner: The person responsible for implementing the response to a risk.
• Risk Matrix: A table that plots probability against impact to categorize risks (e.g., High, Medium, Low).
• Risk Tolerance: The level of risk that an organization or project is willing to accept.
• Risk Threshold: The point at which a risk becomes unacceptable.
• Risk Appetite: The level of risk that an organization or project is willing to take on.
• Risk Assessment: The process of evaluating risks to determine their likelihood and potential impact.
• Risk Management Plan: A document that outlines how risks will be identified, assessed, and managed throughout the project.

Step-by-Step / Process Flow

1. Identify Risks: Gather input from stakeholders, team members, and experts to identify potential risks that could impact the project.
2. Qualify Risks: Assess the likelihood and potential impact of each identified risk using a risk matrix or other evaluation criteria.
3. Plan Responses: Develop strategies to mitigate or manage each qualified risk, including assigning an owner and a response.
4. Monitor Risks: Regularly review and update the Risk Register to ensure that risks are being managed effectively and that new risks are being identified.
5. Review and Update: Review the Risk Register regularly to ensure that it remains relevant and effective in managing project risks.

Common Mistakes

• Mistake: Failing to involve stakeholders in the risk identification process.
• Correction: Engage stakeholders, team members, and experts to ensure that all potential risks are identified.
• Mistake: Not regularly reviewing and updating the Risk Register.
• Correction: Schedule regular reviews to ensure that the Risk Register remains relevant and effective.
• Mistake: Not assigning clear owners and responses to risks.
• Correction: Clearly assign owners and responses to each risk to ensure accountability and effective risk management.

Exam Tips

• Tip: Be prepared to explain the difference between risk tolerance and risk appetite.
• Tip: Understand the concept of risk threshold and how it relates to risk tolerance.
• Tip: Be able to describe the process of risk assessment and how it informs the risk management plan.

Quick Practice Questions

1. If a risk has a probability of 30% and an impact of 20%, what is its score? Answer: 6% (30% × 20%). Explanation: The score is the product of probability and impact.

2. If a project has a risk tolerance of 10% and a risk threshold of 20%, what is the risk appetite? Answer: 10% (since the risk tolerance is below the risk threshold). Explanation: The risk appetite is the level of risk that an organization or project is willing to take on, which is determined by the risk tolerance and threshold.

3. If a risk has a response that involves assigning an additional team member, what is the owner of the risk? Answer: The project manager or the person responsible for assigning the additional team member. Explanation: The owner of the risk is the person responsible for implementing the response to the risk.

Last-Minute Cram Sheet

• A Risk Register is a document that lists identified risks, their causes, probabilities, impacts, scores, responses, and owners.
• Risk = Uncertain event or condition that could have a positive or negative impact on the project.
• Cause = Underlying reason for a risk.
• Probability = Likelihood of a risk occurring (expressed as a percentage).
• Impact = Potential effect of a risk on the project (expressed as a percentage).
• Score = Product of probability and impact.
• Response = Planned action to mitigate or manage a risk.
• Owner = Person responsible for implementing the response to a risk.
• Risk Matrix = Table that plots probability against impact to categorize risks.
• Risk Tolerance = Level of risk that an organization or project is willing to accept.
• Risk Threshold = Point at which a risk becomes unacceptable.
• Risk Appetite = Level of risk that an organization or project is willing to take on.
• Risk Assessment = Process of evaluating risks to determine their likelihood and potential impact.
• Risk Management Plan = Document that outlines how risks will be identified, assessed, and managed throughout the project. Risk tolerance and risk appetite are not the same thing. Risk threshold is the point at which a risk becomes unacceptable. Risk appetite is the level of risk that an organization or project is willing to take on.