The risk management process begins with identification - to assess a project for potential risks that could threaten the project process itself, or the outcome. But identification is only the beginning.
Once probable risks are identified, they must then be assessed to determine the level of impact - i.e. will there be a negative impact, and how serious will it be?If the impact is serious, that raises another question - i.e. is the negative impact sufficiently serious as to warrant further action? If the answer is yes, management steps must be initiated for appropriate risk control.
Your first step in the risk control process is to determine the need. At this point, you may have taken steps to acknowledge the potential impact of risks, but awareness may not be enough. While you may choose to accept one or more types of risks, you may not be willing, or able, to withstand others. And, considering the time, effort and potential cost of risk control strategies, any such effort should be expended wisely. (Download: Risk Evaluation Template)
Based on an analysis of probable risks, you may decide that you can withstand additional project expenses, but not schedule delays. As a result, you can focus your mitigation and control efforts onto timing risks, knowing that you could absorb certain increases in expenditures. Or, if your project schedule is aggressive, with limited time for risk analysis and control, you may decide to deal only with the most serious types of risks, taking your chances with others.
After completion of the risk "evaluation" process, you will be prepared to tackle the next step ... the formation of specific strategies for risk management and control. These strategies can include acceptance, avoidance or mitigation.
To acknowledge the risk, but decide that any actions to avoid or mitigate the risk can be too costly or time consuming. Or, it may just be possible that the risk cannot be avoided or mitigated in any meaningful way, and the benefits of the project far outweigh the risks.
To take action that will eliminate the risk in entirety. Depending upon the circumstances, you may need to change project scope, modify project plans, hire additional resources, or adopt different technical solutions. Avoidance can be costly, but it may be the only way to achieve project deliverables.
To take action that will minimize the potential impact of any given risk through the analysis and consideration of alternative solutions. In essence, this is a combination of acceptance and avoidance. You can alter plans and schedules, and take specific actions to minimize the chance that a risk will occur. And, you can also develop alternate plans to be enacted should the risk actually occur .... "i.e. if this happens, I will do that, but until then, I will stick with the original plan". In other words, you can be prepared in either event. While mitigating strategies provide the best of both worlds, that benefit cannot be realized without some expense in terms of time, equipment and staff resources. (Also See: Fast Tracking the Project Schedule)
Every process needs a starting point, and when options are viewed in a structured manner, decision making is made easier and more readily justifiable. Whether you choose to accept, avoid or mitigate a given risk will vary based on specific needs, issues and circumstances.
“Risk control” is a critical juncture in the risk management process. Every effort to control and mitigate risk has a price - in terms of time, money or resources. Before any action is taken to accept, avoid, or mitigate, these costs must be carefully considered. Risk control strategies must be carefully aligned with project needs, value and overall priority. Furthermore, risk control strategies must consider the impact that the risk could have on the project to ensure that control efforts are well placed. (Also Read: Analyzing Project Risks)
Visit our fasttrackmanage.com website to learn more about project fast tracking.
It's easy to set goals. It's not that easy to reach them. A "vision" will lead the way and that's what you will find in the pages of the Service Strategy Toolkit.