Theme: risk Flashcards

1
Q

what is the definition of a risk

A

An uncertain event that, should it occur, will influence the achievement of objectives.

It consists of a combination of the probability of a perceived threat or opportunity occurring, and the magnitude of its impact on objectives

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

what is a threat

A

a risk that has a negative impact

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

what is an opportunity

A

a risk with a positive impact

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

what is the risk management approach

A

the risk management approach which describes how risk will be managed including any processes, procedures and techniques and responsibilities

  • this is created when intiating a project
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

what is a risk register

A

a record of identified risks, their status and history

  • this is created when initiating a project

Note: Any risks identified during starting up a project should be recorded in the Project Manager’s daily log and transferred to the risk register if the initiation stage is approved by the Project Board

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

what are the 5 steps of the risk management approach

A

1) Identify (context and risks) - First identify the context of the project by examining the project mandate, project brief the product. Then identify the risks and record in the risk register.

2) Assess (estimate and evaluate) – risks should be assessed by their probability – how likely they are to occur. And then look at the impact of the risk would have if it happens and when It would happen (it’s proximity)

3) Plan – Prince2 suggests 6 basic responses for both threats and opportunities (see below)

4) Implement - put the chosen risk response (or responses) into action. The plan will include the responsibilities for the risk owner and also the risk actionee.

5) Communicate – risks can be communicated in the following reports: checkpoint, highlight, end stage, end project and exception reports. You should also consider how much of the risk budget you will spend trying to migitate the risks.

Note: step 1-4 happen in order but step 5 should be happening throughout

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

what information should the risk register contain

A
  • A risk identifier
  • risk author
  • the date register (the date the risk was identified)
  • risk category
  • risk description
  • The probability, impact and expected value of the risk
  • Information on the risk proximity: describe how close to the present time is the risk event anticipated to happen,
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

what is the risk identifier

A

a unique reference for every risk entered into the risk register. This will typically be a numeric or alpha-numeric value

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

who is the risk author

A

the person who raised the risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

what is a risk category

A

describes the type of risk, in terms of the project’s chosen categories, such as schedule, quality, legal and so on

  • it will show how the project will treat the risk based on the category
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

what is included in the risk description

A

describing the cause, the event, whether a threat or opportunity and the likely effect, which will describe the impact in words

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

what are risk responses that happen in both Threats and Opporunities

A
  • Prepare contingent plans: we put in place a plan that will be put into action should the risk occur
  • Accept: where we make a conscious decision to live with the risk
  • Share: we choose to share the loss should a risk occur, usually through a contract
  • Transfer: we transfer the risk to a third party, again via a contract
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

what would be the difference between the risk response for Threats and Opporunities

A

For threats we:
- Avoid: plan the activities differently in such a way that either the risk is avoided altogether, or there is no impact
- Reduce - take some action to reduce the probability or the impact

whereas for Opportunities we:
- Exploit: we take action so that the opportunity is realised
- Enhance : we take action to make the opportunity more likely to happen or increase the impact.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

what is the risk owner responsible for

A

this is the person responsible for managing the risk.

There can be only one risk owner per risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

what is the responsibility of the risk actionee

A

this is the person or persons who will implement the actions described in the risk response

How well did you know this?
1
Not at all
2
3
4
5
Perfectly