Chapter 11

Question 1

What is the objective of project risk management?

Answer 1

Increase the probability and/or impact of positive risks and to decrease the probability and/or impact of negative risks, in order to optimize the chances of project success.

Question 2

The process of defining how to conduct risk management activities for a project.

Answer 2

Plan risk management

Question 3

The process of identifying individual project risks as well as sources of overall project risk, and documenting their characteristics.

Answer 3

Identify risks

Question 4

The process of prioritizing individual project risks for further analysis or action by assessing their probability of occurrence and impact as well as other characteristics

Answer 4

Perform qualitative risk analysis

Question 5

The process numerically analyzing the combined effect of identified individual project risks and other sources of uncertainty on overall project objective.

Answer 5

Perform quantitative risk analysis

Question 6

The process of developing options, selecting strategies, and agreeing on actions to address overall project risk exposure, as well as to treat individual project risks.

Answer 6

Plan risk responses

Question 7

The process of implementing agreed-upon risk response plans.

Answer 7

Implement risk responses

Question 8

The process of monitoring the implementation of agreed-upon risk response plans, tracking identified risks, identifying and analyzing new risks, and evaluating risk process effectiveness throughout the project.

Answer 8

Monitor risks

Question 9

In order to create value while balancing risk and reward organizations should choose to take project risk in what type of manner?

Answer 9

Controlled and intentional

Question 10

What are the two different levels of project risks defined in projects?

Answer 10

Individual project risk

Overall project risk

Question 11

An uncertain event or condition that if it occurs, has a positive or negative effect on one or more project objectives.

Answer 11

Individual project risk

Question 12

The effect of uncertainty on the project as a whole, arising from all sources of uncertainty including individual risks, representing the exposure of stakeholders to the implications of variations in project outcome, both positive and negative.

Answer 12

Overall project risk

Question 13

Individual risk and overall project risk can have both a positive and negative effect on project objectives? True or false.

Answer 13

True

Question 14

What’s another name for negative risks?

Answer 14

Threats

Question 15

What’s another name for positive risks?

Answer 15

Opportunities

Question 16

Describe management of overall project risks?

Answer 16

It aims to keep project risk exposure within an acceptable range by reducing drivers of negative variation, promoting drivers of positive variation and maximizing the probability of achieving overall project objectives.

Question 17

This aims to exploit or enhance positive risks while avoiding or mitigating negative risks.

Answer 17

Project risk management

Question 18

This expresses the degree of acceptable variation around a project objective.

Answer 18

Risk thresholds

Question 19

How should project risk management processes be conducted?

Answer 19

Iteratively

Question 20

What are two types of non-event risks?

Answer 20

Variability risks

Ambiguity risks

Question 21

What are variability risks? What’s an example?

Answer 21

Uncertainty about some characteristics of a planned event, activity or decision.
I.e. errors found during tests might be higher lower, unseasonal weather conditions etc.

Question 22

What are ambiguity risks ? What’s an example?

Answer 22

When uncertainty exists about what might happen in the future.
I.e. future developments in regulatory frameworks

Question 23

How can variability risks be addressed?

Answer 23

By using Monte Carlo analysis, with the range of variation reflected in probability distributions, followed by actions to reduce the spread of possible outcomes.

Question 24

How are ambiguity risks managed?

Answer 24

Defining areas where there is a deficit of knowledge or understanding, then filling the gap by obtaining expert external inout or benchmarking best practices.

Incremental development, prototyping, or simulation

Question 25

What are emergent risks?

Answer 25

The unknowable-unknowns

Risks that can only be recognized after they have occurred.

Question 26

What can tackle emergent risks?

Answer 26

Project resilience

Question 27

What’s integrated risks management?

Answer 27

A coordinated approach to enterprise-wide risks management with alignment and coherence in the way risk is managed across all levels of an enterprise.

Question 28

What are some tailoring considerations for project risk management?

Answer 28

Project size
Project complexity
Project importance
Development approach

Question 29

How is risk handled in agile/adaptive environments?

Answer 29

Risks are reviewed at each iteration and cross functional teams help to accelerate knowledge sharing.

Question 30

The process of defining how to conduct risk management activities for a project.

Answer 30

Plan risk management

Question 31

When should the plan risk management process begin?

When should it be completed?

Answer 31

When the project is conceived.

Early in the project.

Question 32

How does the various project management plans from different processes effect the plan risk management processes?

Answer 32

They need to be taken into consideration when making the project risk management plan to ensure consistency.

Question 33

How does the stakeholder register effect plan risk management?

Answer 33

It provides stakeholders attitude toward risk on the project

Question 34

What elements can be included in a risk management plan?

Answer 34

Risk strategy 
Methodology 
Roles & responsibilities 
Funding 
Timing 
Risk categories 
Stakeholder risk appetite 
Definitions of risk probability and impacts 
Probability and impact matrix 
Reporting formats 
Tracking

Question 35

This defines specific approaches, tools, and data sources that will be used to perform risk management on the project.

Answer 35

Methodology

Question 36

What is RBS?

Answer 36

Risk break down structure: a hierarchical representation of potential sources of risk.
It helps to identify risks and categorize them.

Question 37

How should stakeholder risk appetite be expressed?

Answer 37

As measurable risks thresholds around each project objective.

Question 38

This matrix allows the relative priority of individual risks to be evaluated within each priority level.

Answer 38

Probability and impact matrix

Question 39

This documents how risk activities will be recorded and how risk management processes will be audited.

Answer 39

Tracking

Question 40

The process of identifying individual project risks as well as Sources of overall project risk, and documenting their characteristics.

Answer 40

Identify risks

Question 41

Who should be encouraged to identify individual project risk?

Answer 41

All stakeholders

Question 42

True or false a consistent format should be used for risk statements?

Answer 42

True

Question 43

What’s looked for in agreements when identifying risk?

Answer 43

If the project uses an external procurement of resources the agreement info can present threats or opportunities.

Question 44

Procurement documentation should be reviewed for risks as it is updated. True or false?

Answer 44

True

Question 45

A list of items, actions, or points to be considered.

It is often used as a reminder.

Answer 45

Checklist

Question 46

What are data gathering techniques the identify risk process?

Answer 46

Brainstorming
Checklists
Interviews

Question 47

What are data analysis techniques for the identify risk process?

Answer 47

Root cause analysis
Assumption and constraint analysis
SWOT Analysis
Document Analysis

Question 48

This is used to discover underlying causes that lead to a problem, and develop preventive action.

Answer 48

Root cause analysis

Question 49

With this you can start with a problem statement to identify threats or a benefit statement to identify opportunities.

Answer 49

Root cause analysis

Question 50

This explores the validity of assumptions and constraints to determine which pose a risk to the project.

Answer 50

Assumptions and constraint analysis

Question 51

A predetermined list of risk categories that might give rise to individual project risks and that could also act as sources of overall project risk.

Answer 51

Prompt lists

Question 52

What can be used as a prompt list for individual project risks?

Answer 52

The lowest level of the risk breakdown structure

Question 53

What are some frameworks used for identifying sources of overall project risks?

Answer 53

Pestle ( political, economic,social, technological, legal, environmental)
Tecop (technical, environmental, commercial, operational, political)
Vuca (volatility, uncertainty, complexity, ambiguity)

Question 54

What is the name of the specialized meeting used to undertake risk identification.

Answer 54

Risk workshop

Question 55

This captures details of identified individual project risks.

Answer 55

Risk register

Question 56

Once the identify risk process is completed the content of the risk register may include?

Answer 56

List of identified risks
Potential risk owners
List of potential risk responses

Question 57

This may be used to distinguish risks from their causes and their effects.

Answer 57

A structured risk statement

Question 58

What is each individual project risk given on the risk register?

Answer 58

A unique identifier

Question 59

This presents information on sources of overall project risk, together with summary information on identified individual project risks.

Answer 59

Risk report

Question 60

The process of prioritizing individual project risks for further analysis or action by assessing their probability of occurrence and impact as well as other characteristics.

Answer 60

Perform qualitative risk analysis

Question 61

The key benefit of this process is that it focuses efforts on high priority risks.

Answer 61

Perform qualitative risk analysis

Question 62

Are the perform qualitative risk analysis assessments subjective , if yes how so?

Answer 62

Yes they are subjective because they are based on perceptions of risk by the project team and other stakeholders.

Therefore if facilitators are used they must address biases of the team.

Question 63

When is the perform qualitative risk analysis process conducted in an agile development environment?

Answer 63

Before the start of each iteration

Question 64

What process establishes the relative priorities and risk owner of individual project risks for plan risk responses?

Answer 64

Perform qualitative risk analysis

Question 65

What are some data analysis techniques used in the perform qualitative risk analysis process?

Answer 65

Risk data quality assessment

Risk probability and impact assessment

Assessment of other risk parameters

Question 66

Describe what a risk data quality assessment does? What is it?

Answer 66

It evaluates the degree to which the data about individual project risks is accurate and reliable as a basis for qualitative risk analysis.

A questionnaire of various individual project risks characteristics are used.

Question 67

This data analysis technique considers the likelihood that a specific risk will occur.

Answer 67

Risk probability assessment

Question 68

This data analysis technique considers the potential effect on one or more project objectives.

Answer 68

Risk impact assessment

Question 69

How are risk probability and Impact assessments conducted?

Answer 69

Through interviews or meetings.

Question 70

How are risks with low probability and impact included within the risk register?

Answer 70

As part of a watch list for future monitoring

Question 71

What other risk parameters might be assessed when prioritizing individual project risks?

Answer 71

Urgency 
Proximity 
Dormancy 
Manageability 
Controllability 
Detectability
Connectivity 
Strategic impact 
Propinquity

Question 72

Risk may be categorized into what categories?

Answer 72

Source
Area of project affected
Common root causes

Question 73

How might data be represented in the perform qualitative risk analysis process?

Answer 73

Probability and impact matrix

Hierarchical charts

Question 74

A grid for mapping the probability of each risk occurrence and its impact on project objectives if that risk occurs.

Answer 74

Probability and impact matrix

Question 75

What is an example of a hierarchical chart?

Answer 75

A bubble chart

Question 76

This displays three dimensions of data, where each risk is plotted as a disk (bubble), and the three parameters are represented by the x-axis value, the y-axis, and the bubble size.

Answer 76

Bubble chart

Question 77

The process of numerically analyzing the combined effect of identified individual project risks and other sources of uncertainty on overall project objectives.

Answer 77

Perform quantitative risk analysis

Question 78

Is quantitative risk analysis required for every project?

Answer 78

No

Question 79

Describe the type of project that might use quantitative risk analysis.

Answer 79

Large or complex projects

Question 80

What does quantitative risk analysis usually require?

Answer 80

Specialized risk software

Expertise in the development and interpretation of risk models

Question 81

What are some tools and techniques used for perform quantitative risk analysis?

Answer 81

Expert judgement
Data gathering-Interviews
Interpersonal and team skills-facilitation
Representations of uncertainty
Data analysis -simulation, sensitivity analysis, decision tree analysis, influence diagrams

Question 82

What are some forms of probability distributions used for representations of uncertainty in quantitative risk analysis models?

Answer 82

Triangular 
Normal
Lognormal
Beta
Uniform
Discrete distributions

Question 83

The use of this in a model is when optional activities are added to the model to represent the time and /or cost impact of the risk should it occur, and the chance that these activities actually occur in a particular simulation run matches the risks probability.

Answer 83

Probabilistic branches

Question 84

What’s used in a model to represent when risk are related?

Answer 84

Correlation

Question 85

How are simulations typically performed?

Answer 85

Using a Monte Carlo analysis

Question 86

This type of analysis determines which element of the risk model have the greatest effect on the project critical path.

Answer 86

Criticality analysis

Question 87

This type of analysis helps to determine which individual project risks or other sources of uncertainty have the most potential impact on project outcomes.

Answer 87

Sensitivity analysis

Question 88

This presents the calculated correlation coefficient for each element of the quantitative risk analysis model that can influence the project outcome.

Answer 88

Tornado diagram

Question 89

What’s a typical display of a sensitivity analysis?

Answer 89

Tornado diagram

Question 90

This is used to support selection of the best of several alternative courses of action.

Answer 90

Decision tree analysis

Question 91

This diagram represents a project or situation within the project as a set of entities, outcomes, and influences, together with the relationships and effects between them.

Answer 91

Influence diagrams

Question 92

What is included on the risk report after the performance of quantitative risk analysis?

Answer 92

Assessment of overall project risk exposure
Detailed probabilistic analysis of the project
Prioritized list of individual project risks
Trends in quantitative risk analysis results
Recommended risk responses

Question 93

What are the two key measures of overall project risk in the assessment of overall project risk exposure?

Answer 93

Chances of project success

Degree of inherent variability remaining within the project at the time the analysis was conducted

Question 94

The process of developing options, selecting strategies, and agreeing on actions to address overall project risk exposure, as well as to treat individual project risk.

Answer 94

Plan risk responses

Question 95

Who should make plans to address individual project risk?

Answer 95

The nominated risk owner

Question 96

Risks that arise as a direct result of implementing a risk response.

Answer 96

Secondary risk

Question 97

What are the five alternative strategies considered for dealing with threats?

Answer 97

Escalate 
Avoid
Transfer
Mitigate 
Accept

Question 98

What type of threats are escalated?

Answer 98

Threats that are outside the scope of the project or that the proposed response would exceed the project manager’s authority.

Question 99

This is when the project team acts to eliminate the threat or protect the project from its impact.

Answer 99

Avoid

Question 100

What type of strategy could be appropriate for a high-priority threat with a high-probability of occurrence and a large negative impact.

Answer 100

An avoid strategy

Question 101

What are the following examples of?
Removing the cause of a threat
Extending the schedule
Changing the project strategy 
Reducing scope

Answer 101

The avoid strategy

Question 102

This involves shifting ownership of a threat to a third party to manage the risk and to bear the impact if the threat occurs.

Answer 102

Transfer

Question 103

This strategy for dealing with threats often involves payment of a risk premium to the party taking on the threat.

Answer 103

Transfer

Question 104

This type of risk strategy can be achieved by the use of insurance, performance bonds, warranties, guarantees, etc.

Answer 104

Transfer

Question 105

Describe what it Men’s to mitigate a risk.

Answer 105

Take action to reduce the probability of occurrence and/or impact of a threat.

Question 106

Adopting less complex processes, conducting more tests, or choosing a more stable seller are examples of what risk strategy?

Answer 106

Mitigation

Question 107

This happens when the existence of a threat is acknowledged, but no proactive action is taken.

Answer 107

Acceptance

Question 108

What type of threats and opportunities might be accepted?

Answer 108

Those of low priority

Question 109

What are the two types of acceptance and provide an example of each.

Answer 109

Active: contingency reserve

Passive:periodic review of the threat to ensure it does not change significantly

Question 110

What are the five alternative strategies that may be considered for dealing with opportunities?

Answer 110

Escalate 
Exploit 
Share 
Enhance 
Accept

Question 111

Are escalated opportunities monitored by the project team after escalation?

Answer 111

No, although they may be recorded in the risk register for information

Question 112

Describe the exploit strategy.

Answer 112

This strategy seeks to capture the benefit associated with a particular opportunity by ensuring that it definitely happens, increasing the probability to 100%. It is selected for high-priority opportunities where the organization wants to ensure that the opportunity is realized.

Question 113

This plan risk response strategy involves transferring ownership of an opportunity to a third party so that it shares some of the benefit if the opportunity occurs.

Answer 113

Share.

Question 114

What’s some ways a project might share a risk opportunity?

Answer 114

By Forming;
risk sharing partnerships 
Teams
Special-purpose companies
Joint ventures

Question 115

This plan risk response strategy is used to increase the probability and/or impact of an opportunity.

Answer 115

Enhance

Question 116

This risk response strategy acknowledges an opportunity exist but no proactive action is taken.

Answer 116

Accept

Question 117

Describe active and passive opportunity acceptance.

Answer 117

Active- establish a contingency reserve

Passive-periodic review of the opportunity to ensure it does not change significantly

Question 118

What do you call plans that are designed for use only if certain events occur?

They include identified triggering events that set the plans in effect.

Answer 118

Contingency plans aka fall black plans

Question 119

Can the same risk responses used to deal with individual project risks be applied to overall project risk ?

Answer 119

Yes

Question 120

Removal of high risk elements of scope from the project is an example f what?

Answer 120

Using the avoid strategy for overall project risk

Question 121

The process of implementing agreed-upon risk response plans.

Answer 121

Implement risk responses

Question 122

The process of monitoring the implementation of agreed-upon risk response plans, tracking identified risks, identifying and analyzing new risks, and evaluating risk process effectiveness throughout the project.

Answer 122

Monitor risks

Question 123

In order to make sure the project team is aware of the current level of risk exposure what process is used?

Answer 123

Monitor risk

Question 124

What data analysis techniques can be used for the monitor risk process?

Answer 124

Technical performance analysis

Reserve analysis

Question 125

This requires the definition of objective, quantifiable measures of technical performance, which can be used to compare actual results against targets.

Answer 125

Technical performance analysis

Question 126

This compares technical accomplishments during project execution to the schedule of technical achievement.

Answer 126

Technical performance analysis

Question 127

This compares the amount of the contingency reserves remaining to the amount of risk remaining at any time in the project in order to determine if the remaining reserve is adequate.

Answer 127

Reserve analysis

Question 128

This may be used to consider the effectiveness of the risk management process.

Answer 128

Risk audit

Question 129

Describe a risk review.

Answer 129

They are scheduled regularly and should examine and document the effectiveness of risk responses in dealing with overall project risk and with identifies individual project risks.

Question 130

This includes information on how project risk management is performing by comparing the individual risks that have occurred with the expectation of how they would occur.

Answer 130

Work performance information