Chapter 11 Flashcards

Question 1

Q

what is project risk management?

Answer

A

process of conducting risk management planning, identification, analysis, response planning and monitoring and conrol on a project

Question 2

Q

what are the objectives of Project Risk Management?

Answer

A

increase probability and impact of positive events, decrease probability and impact of negative events

Question 3

Q

what are the processes to Project Risk Management?

Answer

A

1 plan risk management
2 identify risks
3 perform qualitative risk analysis
4 perform quantitative risk analysis
5 plan risk responses
6 monitor and control risks

Question 4

Q

what is risk?

Answer

A

an uncertain event or condition that has an effect on at least one project objective if it occurs

Question 5

Q

what are objectives?

Answer

A

can include scope, schedule, cost and quality

Question 6

Q

what is a cause?

Answer

A

a requirement, assumption, constraint or condition that creates the possibility of negative or positive outcomes

Question 7

Q

what are risk conditions?

Answer

A

aspects of the project/org’s environment that may contribute to project risk
ex. immature project management practices, lack of integrated management systems, concurrent multiple projects, dependencies on external participants who can’t be controlled

Question 8

Q

what are known risks?

Answer

A

those that have been identified and analyzed, making it possible to plan responses to those risks

Question 9

Q

what are unknown risks

Answer

A

cannot be managed proactively. should create a contingency plan

Question 10

Q

what steps does an org need to make to be successful in handling risk?

Answer

A

committed to address risk management proactively and consistently throughout the project
conscious choice to actively identify and pursue effective risk management during the life of the project

Question 11

Q

what is the Plan Risk Management process?

Answer

A

process of defining how to conduct risk management activities for a project
should be completed early during project planning

Question 12

Q

why is the Plan Risk Management process important?

Answer

A

ensures that the degree, type, and visibility of risk management are commensurate with the risks and the importance of the project to the org
provides sufficient resources and time for risk management activities and to establish an agreed-upon basis for evaluating risks

Question 13

Q

what are the inputs to the Plan Risk Management process?

Answer

A

project scope statement
cost management plan
schedule management plan
communications management plan
enterprise environmental factors
organizational process assets

Question 14

Q

what are the tools and techniques to the Plan Risk Management process?

Answer

A

planning meetings and analysis

Question 15

Q

what are the outputs to the Plan Risk Management process

Answer

A

risk management plan

Question 16

Q

how is the project scope statement an input to the Plan Risk Management process?

Answer

A

provides a clear sense of the range of possibilities associated with the project and establishes the framework for how significant risk management may become

Question 17

Q

how is the cost management plan an input to the the Plan Risk Management process?

Answer

A

defines how risk budgets, contingencies and management reserves will be reported and accessed

Question 18

Q

how is the schedule management plan an input to the Plan Risk Management process?

Answer

A

defines how schedule contingencies will be reported and assessed

Question 19

Q

how is the communications management plan an input to the Plan Risk Management process?

Answer

A

defines interactions that will occur on the project and determines who’s available to share info on risks and responses at different times and locations

Question 20

Q

what enterprise environmental factors can influence the the Plan Risk Management process?

Answer

A

risk attitudes and tolerances that describe the degree of risk that the org will withstand

Question 21

Q

what organizational process assets can influence the Plan Risk Management process?

Answer

A

risk categories
common definitions of concepts and terms
risk statement formats
standard templates
roles and responsibilities
authority levels for decision making
lessons learned
stakeholder registers

Question 22

Q

how are planning meetings and analysis a tool & technique for the Plan Risk Management process?

Answer

A

planning meetings of PM, team members, stakeholders, etc held to develop risk management plan
high level plans for conducting risk management activities are defined in these meetings
risk management cost and schedule activities established
risk management responsibilities assigned
org templates for risk tailored to the project
outputs of these meetings summarized in risk management plan

Question 23

Q

what goes in the risk management plan after the Plan Risk Management process?

Answer

A

describes how risk management will be structured and performed on the project

includes
- methodology: approches, tools and data sources that may be used to perform risk management

roles and responsibilities: defines the lead, support and risk management team members for each type of activity in the risk management plan
budgeting: resources and funds needed for risk management to be included in the cost performance baseline, and establishes protocols for applying the contingency reserve
timing: defines when and how often risk management process will be performed throughout the project and establishes protocols for applying schedule of contingency reserves
risk categories: provies structure that ensures a comprehensive process of systematically identifying risks to a consistent level of detils (ex. a Risk Breakdown Structure – RBS)
definitions of risk probability and impact: general definitions of probability and impact levels are tailored to the project
probability and impact matrix: table with specific combinations of probability and impact that lead a risk to be rated high/med/low
revised stakeholders; tolerances
reporting formats: how outcomes of the risk management processes will be documented, analyzed and communicated
tracking: hor risk activities will be recorded for the current project and future needs

Question 24

Q

what is the Identify Risks process?

Answer

A

process of determining which risks may affect the project and documenting their characteristics
participants can include PM, team members, risk management team, customers, subject matter experts, end users, other PMs, stake holders, risk management experts

Question 25

Q

why should the Identify Risks process involve the project team?

Answer

A

so they can develop and maintain a sense of ownership and responsibility for the risks and associated risk response actions

Question 26

Q

what are the inputs to the Identify Risks process?

Answer

A

risk management plan
activity cost estimates
activity duration estimates
scope baseline
stakeholder register
cost management plan
schedule management plan
quality management plan
project documents
enterprise environmental factors
organizational process assets

Question 27

Q

what are the tools & techniques of the Identify Risks process?

Answer

A

documentation reviews
information gathering techniques
checklist analysis
assumptions analysis
diagramming techniques
SWOT analysis
expert judgment

Question 28

Q

what are the outputs of the Identify Risks process?

Answer

A

risk register

Question 29

Q

how is the risk management plan an input to the Identify Risks process?

Answer

A

assignments of roles and responsibilities, provision for risk management activities in the budget and schedule, and categories of risk are key inputs from the risk management plan to the Identify Risks process

Question 30

Q

how are activity cost estimates an input to the Identify Risks process

Answer

A

reviewing activity cost estimates helps identifies risk as they provide a quantitative assessment of the likely cost to complete scheduled activities and are ideally expressed as a range with the width of the range indicating the degree of risk
can determine if the estimate is sufficient to complete the activity

Question 31

Q

how are activity duration estimates an input to the Identify Risks process?

Answer

A

reviews of this helps identify risks related to time allowances for activities and the project as a whole

Question 32

Q

how isthe scope baseline an input to the Identify Risks process?

Answer

A

assumptions found in the project scope statement should be evaluated as potential causes of risk
WBS is a critical input to identifying risks as it facilitates an understanding of the potential risks at the micro and macro level

Question 33

Q

how is the stakeholder register an input to the Identify Risks process?

Answer

A

ensures the key stakeholders are interviewed/participate in the Identify Risks process

Question 34

Q

how is the cost management plan an input to the Identify Risks process

Answer

A

project-specific approach to cost management may generate/alleviate risk

Question 35

Q

how is the schedule management plan an input to the Identify Risks process?

Answer

A

need to understand the schedule management plan because the project-specific approach to schedule management may generate/alleviate risk

Question 36

Q

how is the quality management plan an input to the Identify Risks process?

Answer

A

- project-specific approach to quality management may generate/alleviate risk

Question 37

Q

what project documents are inputs to the Identify Risks process?

Answer

A

include

assumptions log
work performance reports
earned value reports
network diagrams
baselines
other project info

Question 38

Q

what enterprise environmental factors can influence the Identify Risks process?

Answer

A

published info like commercial databases
academic studies
published checklists
benchmarking
industry studies
risk attitudes

Question 39

Q

what organizational process assets can influence the Identify Risks process?

Answer

A

project files
org and project process controls
risk statement templates
lessons learned

Question 40

Q

how are documentation reviews used in the Identify Risks process?

Answer

A

structured reviews of document
quality of the plans and consistency between the plans and the project requirements and assumptions can be indicators of risk in the project

Question 41

Q

what are some information gathering techniques used to identify risks?

Answer

A

brainstorming
delphi technique
interviewing
root cause analysis

Question 42

Q

how is brainstorming used in the Identify Risks process?

Answer

A

obtain a comprehensive list of risks from experts
categories of risk (ex. RBS) can be used as a framework
risks are identified and categorized

Question 43

Q

how is the Delphi technique used in the Identify Risks process?

Answer

A

use questionnaire to solicit ideas about project risks from experts anonymously
responses summarized and recirculated for another round until consensus is reached

Question 44

Q

how is interviewing used in the Identify Risks process?

Answer

A

interview experienced project participants, stakeholders, and subject matter experts

Question 45

Q

how is root cause analysis used in the Identify Risks process?

Answer

A

specific technique to identify a problem, discover the underlying causes that lead to it and develop preventive action

Question 46

Q

how is checklist analysis used in the Identify Risks process?

Answer

A

risk identification checklists can be developed based on historical informaiton and knowledge from past projects
lowest level of RBS can also be used as a risk checklist
checklist is not exhaustive

Question 47

Q

how is assumptions analysis used in the Identify Risks process?

Answer

A

explores the validity of assumptions as they apply to the project
identifies risks to the project from inaccuracy, instability, inconsistency or incompleteness of assumptions

Question 48

Q

what diagramming techniques are used in the Identify Risks process?

Answer

A

cause & effect diagrams (Ishikawa/fishbone diagrams)
system or process flow charts
influence diagrams: shows causal influences, time ordering of events and other relationships

Question 49

Q

how is a SWOT analysis used in the Identify Risks process?

Answer

A

increases the breadth of identified risks

Question 50

Q

how is expert judgment used in the Identify Risks process?

Answer

A

risks identified by experts with experience in similar projects/business areas
experts’ bias should be taken into account

Question 51

Q

what are the main outputs from the Identify Risks process?

Answer

A

initial entries into the risk register, which contains the outcomes of the other risk management processes

includes
- list of identified risks (with root causes and details)

list of potential responses

Question 52

Q

what is Perform Qualitative Analysis?

Answer

A

process of prioritizing risks for further analysis/action by assessing and combining their probability of occurrence and impact on project
reflects the attitude of the team and stakeholders to risk
rapid, cost-effective way to establish priorities for Plan Risk Responses and lays the foundation for Perform Quantitative Risk ANalysis if needed

Question 53

Q

what might bias the risk analysis and how do you account for it/

Answer

A

time criticality of risk-related actions may magnify the importance of a risk
establish definitions of the levels of probability and impact
evaluate the quality of the information available on porject risks

Question 54

Q

what are the inputs to the Perform Qualitative Risk Analysis process?

Answer

A

risk register
risk management plan
project scope statement
organizational process assets

Question 55

Q

what are the tools & techniques to the Perform Qualitative Risk Analysis process?

Answer

A

risk probability and impact assessment
probability and impact matrix
risk data quality assessment
risk categorization
risk urgency assessment
expert judgment

Question 56

Q

what are the outputs to the Perform Qualitative Risk Analysis process?

Answer

A

risk register updates

Question 57

Q

what parts of the risk management plan serves as inputs to the Perform Qualitative Risk Analysis process?

Answer

A

roles and responsibilities for conducting risk management, budgets, schedule activities for risk management, risk categories, definitions of probability and impact, the probability and impact matrix, and revised stakeholders’ risk tolerances

Question 58

Q

what part of the Project Scope Statement serves as an input to the Perform Qualitative Risk Analysis process?

Answer

A

evaluate what type of project it is

- common project have more well-understood risks; new, or highly complex projects have more uncertainty

Question 59

Q

what organizational process assets serves as inputs to the Perform Qualitative Risk Analysis process?

Answer

A

information on previous similar projects
studies of similar projects by risk specialists
risk databases

Question 60

Q

what is a risk probability and impact assessment?

Answer

A

risk probability assessment investigates the likelihood each specific task will occur
risk impact assessment investigates the potential effect on a project objective like schedule, cost, quality or performance (both negative and positive)
probability and impact are assessed for each risk and rated according to definitions in the risk management plan
assumptions and explanations justifying the levels assigned are recorded

Question 61

Q

what is the probability and impact matrix?

Answer

A

specifies combinations of probability and impact that lead to rating the risks as low/med/high
these risk-rating rules are used to determine if risks need to go through further quantitive analysis and response based on their risk rating and the org

Question 62

Q

what is the benefit of the risk rating?

Answer

A

guides risk responses

Question 63

Q

what is risk data quality assessment?

Answer

A

analysis of the quality of risk data to evaluate the degree to which data about risks are useful for risk management
accuracy, quality, reliability, and integrity of the data regarding the risk

Question 64

Q

what is risk categorization?

Answer

A

risks to the project can be categorized by sources of risk (ex. using the RBS), area of the project affected (ex. using the WBS) or other useful category (ex. project phase) to determine areas of the project most expose to the effects of uncertainty

Answer 65

A

risks requiring near-term responses are considered more urgent to address
indicators of priority include time to affect a risk response, symptoms and warning signs, and risk rating
risk urgency can be combined with risk ranking from the probability and impact matrix

Answer 66

A

required to assess the probability and impact of each risk

- usually those with experience with similar projects and those planning & managing the specific project

Answer 67

A

relative ranking/priority list of project risks: tasks grouped low/med/high based on probability and impact matrix can then be prioritized by objective (sch, sot, performance)
risks grouped by categories
causes of risk or project areas requiring particular attention
list of risks requiring responses in the near-term
list of risks for additional analysis and response
watchlist for low-priority risks
trends in qualitative risk analysis results

Answer 68

A

process of numerically analyzing the effect of identified risks on overall project objectives
performed on risks that have been prioritized by the Perform Qualitative Risk Analysis process as potentially and substantially impacting the project’s competing demands
can be used to assign a numerical rating to risks individually or to evaluate the aggregate effect of all risks affecting the project

Answer 69

A

after the Perform Qualitative Risk Analysis process, sometimes not needed
should be repeated after Plan Risk Responses as well as part of Monitor and Control Risks

Answer 70

A

risk register
risk management plan
cost management plan
schedule management plan
organizational process assets

Answer 71

A

data gathering & representation techniques
quantitative risk analysis and modeling techniques
expert judgment

Answer 72

A

risk register updates

Answer 73

A

the criteria for planning, structuring, estimating, budgeting and controlling project costs can help determine the structure and/or approach for quantitative analysis of the budget or cost plan

Answer 74

A

criteria for developing and controlling the project schedule can be used to help determine the structure/approach for quantitative analysis of the schedule

Answer 75

A

information on prior projects
studies of similar projects by risk specialists
risk databases

Answer 76

A

interviewing

- probability distributions

Answer 77

A

draw on experience and historical data to quantify probability and impact of risk on project objectives
document the rationale of the risk ranges and assumptions to provide insight on the reliability and credibility of the analysis

Answer 78

A

continuous probability distributions represent the uncertainty in values like durations of schedule activities and costs of project components (ex. beta and triangular distributions)
discrete distributions can be used to represent uncertain events like the outcome of a test or scenario in a decision tree

Answer 79

A

sensitivity analysis
expected monetary value (EMV) analysis
modeling and simulation

Answer 80

A

helps determine which risks have the most potential impact on a project by examining the extent to which the uncertainty of each project element affects the objective being examined when all other uncertain elements are held at their baseline values (ex. tornado diagram)

Answer 81

A

EMV analysis is a statistical concept that calculates the average outcome when the future includes scenarios that may or may not happen
opportunities are +, threats are -
requires a risk-neutral assumption
sum of all the probability of outcome x value of outcome

Answer 82

A

project simulation uses a model that translates the specified detailed uncertainties of the project into their potential impact on project objectives
ex. Monte Carlo technique

Answer 83

A

project model is computed many times with input values (ex. cost estimates or activity durations) chosen at random for each iteration. a probability distribution (ex. total cost or completion date) is calculated from the iterations
for cost risk analysis, use cost estimates
for schedule risk analysis, use schedule network diagram and duration estimates
output illustrates likelihood of the results (graph cost/schedule by probability)

Answer 84

A

- required to identify potential cost and schedule impacts, evaluate probability and define inputs
also helps interpret data

Answer 85

A

probabilistic analysis of the project: the cumulative distribution can be used with stakeholder risk tolerances to permit quantification of the risk and time contingency reserves
probability of achieving cost and time objectives
prioritized list of quantified risks
trends in quantitative risk analysis results

Answer 86

A

process of developing options and actions to enhance opportunities and reduce threats to project objectives
includes identifying and assigning one person (risk response owner) to take responsibility for each risk response
addresses risks by their priority, inserting resources and activities into the budget, schedule and project management as needed

Answer 87

A

appropriate to the significance of the task
cost effective in meeting the challenge
realistic within the project context
agreed by all parties involved
owned by a responsible person
timely

Answer 88

A

risk register

2. risk management plan

Answer 89

A

strategies for negative risks or threats
strategies for positive risks or opportunities
contingent response strategies
expert judgment

Answer 90

A

risk register updates
risk-related contract decisions
project management plan updates
project document updates

Answer 91

A

identified risks
root causes of risks
list of potential responses
risk owners
symptoms and warning signs
relative rating / priority list of project tasks
a list of risks requiring response in the enar term
list of risks for additional analysis and response
trends in qualitative analysis results
watchlist of low-priority tasks

Answer 92

A

roles and responsibilities
risk analysis definitions
timing for reviews
risk thresholds for low/med/high

Answer 93

A

using risk analysis tools like decision tree analysis

Answer 94

A

developed for implementation if selected strategy turns out to not be effective or if accept risk occurs

Answer 95

A

a contingency reserve can help

Answer 96

A

avoid
transfer
mitigate
accept

Answer 97

A

changing the PM plan to eliminate the threat entirely by isolating the project objectives from the risk’s impact or changing the objective that’s in jeopardy
ex. extending the schedule, changing the strategy, reducing scope, even shutting down the project

Answer 98

A

shifting some or all of the negative impact and ownership of the response to a third party
doesn’t eliminate the risk
most effective in dealing with financial risk exposure
involves paying a risk premium to the party taking the risk
ex. insurance, performance bonds, guarantees, warrantees

Answer 99

A

reduce the probability and/or impact of an adverse risk event to be within acceptable threshold limits
reducing probability and/or impact is more effective than trying to repair damage after risk has occured
ex. adopting less complex processes, conducting more tests, choosing a more stable supplier, building a prototype

Answer 100

A

make no changes to deal with the risk
passive acceptance requires no action but to document the strategy, dealing with the risks as they occur
active acceptance requires setting up a contingency reserve to handle risks

Answer 101

A

exploit
share
enhance
accept

Answer 102

A

strategy where the org wants to ensure the opportunity is realized
seek to eliminate the uncertainty associated with the risk by ensuring the opportunity definitely happens
ex. assigning the best members to the team to rduce cost/time

Answer 103

A

allocating some or all ownership of the opportunity to a third party who can capture the opportunity for hte benefit of the project
ex. risk-sharing partnerships, joint ventures

Answer 104

A

used to increase probability and/or positive impacts of an opportunity
identify and maximize key drivers of positive-impact risks

Answer 105

A

accept an opportunity if it comes along but not actively pursuing it

Answer 106

A

responses designed for use only if certain events occur (ex. missing intermediate milestones)

Answer 107

A

input from knowledgeable parties about the actions to be taken on a specific and defined risk

Answer 108

A

identified risks, their descriptions, areas of the project effective, their causes, and how they may affect project objectives
risk owners and assigned responsibilities
outputs from the Perform Qualitative Analysis process ncluding prioritized lists of project risks
agreed upon response strategies
specific actions to implement the chosen response strategy
triggers, symptons and warning signs of risks’ occurrence
budget and schedule activities required for implementing responses
contingency plans and triggers
fallback plans
residual risks expected to remain after planned responses have been taken
secondary risks that arise out of implementing a risk response
contingency reserves calculated based on quantitative risk analysis and org’s risk thresholds

Answer 109

A

decisions to transfer risks as a result of mitigating or transfering threat, or enhancing or sharing opportunity

Answer 110

A

schedule management plan (tolerance to resource loading and leveling; updates to schedule)
cost management plan (changes in tolerance/behvior re: cost accounting, tracking and reports; updates to budget and contingency reserves)

quality management plan (changes in tolerance/behavior related to requirements, QA or QC and updates to requirements doc)

procurement management plan (alterations in the make-or-buy decision and contract types driven by risk responses)
HR management plan (changes re: staff allocation and resource loading)
work breakdown structure (work generated by risk responses)
schedule baseline (work generated by risk responses)
cost performance baseline (work generated by risk responses)

Answer 111

A

assumptions log updates

- technical documentation updates

Answer 112

A

process of implementing risk response plans, tracking identified risks, monitoring residual risks, identifying new risks and evaluating risk process effectiveness
determine if project assumptions are still valid
determine if assessed risk has been changed or can be required
determine if risk management policies and procedures are being followed
determine if contingency reserves should be modified

Answer 113

A

risk register
project management plan
work performance information
performance reports

Answer 114

A

risk reassessment
risk audits
variance and trend analysis
technical performance measurement
reserve analysis
status meetings

Answer 115

A

risk register updates
organizational process assets updates
change requests
project management plan updates
project document updates

Answer 116

A

identified risks and risk owners
agreed-upon risk responses
specific implementation actions
symptoms and warning signs of risk
residual and secondary risks
watchlist of low-priority risks
time and cost contingency reserves

Answer 117

A

the risk management plan, which includes risk tolerances, protocols and assignment of people, time and other resources to risk management

Answer 118

A

deliverable status
schedule progress
costs incurred

Answer 119

A

performance reports that take info from performance measurements and analyze it to provide project work performance information including variance analysis, earned value data and forecasting data

Answer 120

A

regularly scheduled assessments of risks. amount and detail of repetition depends on how project progresses relative to its objectives

Answer 121

A

examine and document the effectiveness of risk responses in dealing with identified risks and their root causes as well as the effectiveness of the risk management process
PM is responsible for ensuring risk audits are performed at an appropriate frequency

Answer 122

A

trends in the project’s execution should be reviewed using performance information
earned value analysis and other methods of project variance anad trend analysis used for monitoring overall project performance
outcomes may forecast potential deviation which may indicate the potential impact of threats or opportunities

Answer 123

A

compares technical accomplishments during execution to schedule of technical achievement in PM plan
uses quantifable measures of technical requirements to compare actual results against targets (ex. weight, number of defects, transaction times, etc)
deviation may expose risk faced by the project

Answer 124

A

compares amount of contingency reserves remaining to the amount of risk remaining to determine if remaining reserve is adequate

Answer 125

A

risk management should be discussed at periodic status meetings

Answer 126

A

outcomes of risk reassessments, risk audits and periodic risk reviews (new risks, updates to risk register, closing risks)
outcomes of the project’s risks and of risk responses

Answer 127

A

templates for risk management plan, including the probability and impact matrix and the risk register
risk breakdown structure
lessons learned

Answer 128

A

implementing contingency plans or workarounds can result in change requests, which need to be submitted to the Perform Integrated Change Control process

– recommended corrective actions (contingency plans and workarounds)

– recommended preventive actions (documented directions to perform an activity that can reduce the probability of negative consequences associated with project risks)

Answer 129

A

same as after the Plan Risk Responses process

Answer 130

A

same as after the Plan Risk Responses process

Brainscape's Knowledge GenomeTM

Chapter 11 Flashcards

Brainscape's Knowledge Genome^TM