OPEN Module 2: Project Planning

Unit 5: Requirements Analysis
12 Topics | 10 Quizzes
5.1 Work breakdown structure
5.1 Quiz
5.2 WBS tips and tricks
5.2 Quiz
5.3 Acceptance criteria
5.3 Quiz
Learn more: The Expert
5.4 The project budget
5.4 Quiz
5.5 Advanced estimating
5.5 Quiz
5.6 Procurement planning
5.6 Quiz
5.7 The procurement lifecycle
5.7 Quiz
5.8 Going to tender
5.8 Quiz
5.9 Selecting a supplier
5.9 Quiz
5.10 Negotiating the contract
5.10 Quiz
Learn more: The walk from no to yes
Unit 6: Project Scheduling
10 Topics | 10 Quizzes
6.1 Dependencies
6.1 Quiz
6.2 Forward pass
6.2 Quiz
6.3 Backward pass
6.3 Quiz
6.4 Critical path
6.4 Quiz
6.5 Gantt charts
6.5 Quiz
6.6 More gantt charts
6.6 Quiz
6.7 Resource levelling
6.7 Quiz
6.8 Fast-tracking
6.8 Quiz
6.9 Dependency hierarchy
6.9 Quiz
6.10 Crashing
6.10 Quiz
Unit 7: Managing project risk
15 Topics | 15 Quizzes
7.1 Risk management
7.1 Quiz
7.2 Risk identification
7.2 Quiz
7.3 Qualitative risk analysis – probability
7.3 Quiz
7.4 Qualitative risk analysis – impact
7.4 Quiz
7.5 Risk prioritisation
7.5 Quiz
7.6 Risk appetite
7.6 Quiz
7.7 Risk treatment
7.7 Quiz
7.8 Secondary and residual risk
7.8 Quiz
7.9 Quantitative analysis
7.9 Quiz
7.10 Contingency planning
7.10 Quiz
7.11 Contingency reserves
7.11 Quiz
7.12 Management reserves
7.12 Quiz
7.13 Padding
7.13 Quiz
7.14 Risk register
7.14 Quiz
7.15 Monitoring and controlling risk
7.15 Quiz
Unit 8: Other Project Plans
8 Topics | 8 Quizzes
8.1 Quality management
8.1 Quiz
8.2 Quality management plan
8.2 Quiz
8.3 The cost of quality
8.3 Quiz
8.4 Financial management plan
8.4 Quiz
8.5 Procurement management plan
8.5 Quiz
8.6 Project sizing
8.6 Quiz
8.7 Agile project management
8.7 Quiz
8.8 A final word…
8.8 Quiz
Previous Quiz
Next Quiz

7.2 Risk identification

OPEN Module 2: Project Planning Unit 7: Managing project risk 7.2 Risk identification

Sources of risk

There are two types of project risk: known risks and unknown risks.

As you might imagine, the purpose of formal risk identification is to hypothesize as many known risks as possible.

This is because there are significant consequences for how we treat them.

Known risks can be either treated directly or have contingent responses created for them. 

All we can do for unknown risks is allocate a general reserve of time and money and hope for the best!

Back in the initiation phase, we started considering project risks, although these were largely at the organizational level. 

For example, we looked at the risks of market acceptance, technical capacity, legal and economic risks, as well as the risks of proceeding with different alternatives.

At the project level, the risks we are likely to encounter include:

  • Funding – do we have enough money to deliver the required scope?
  • Time – will we have enough time? Or, as we considered earlier, how confident are we in our estimates?
  • Staffing – are the necessary skills available when we need them?
  • Complexity – are we making things too tricky by half? Remember the inverse relationship between scope and quality!
  • Political support – how secure is executive management support for our project?
  • Stakeholder expectations – can they be met? Are they likely to change?
  • The real world – what is entirely out of our control? What is the risk of flood, fire, or other force majeure?

And that doesn’t even begin to consider the innumerable technical risks of our unique project endeavor!

The risk statement

Risks can be identified by performing a historical review of past projects, engaging stakeholders with relevant expertise in the project under consideration, and applying a wide range of creativity techniques to encourage team members to hypothesize likely risk scenarios.

The knowledge and skills for doing this were covered in the last Module, so I would encourage you to review the relevant presentations. 

Regardless of the process followed, though, it is essential that project risks are unambiguously described. 

This ensures that team members and stakeholders can easily see the relevance of the risk to the project.

For that reason, we often detail each risk using a three-part statement: cause – risk – effect.

In other words, ‘If X occurs, then Y will happen, which will have Z impact on the project.’

Therefore, the risk identification process can be reduced to three simple questions:

  • IF – what could possibly go wrong (or right)? For example, it could rain – the cause
  • THEN – what does this mean for the project? Equipment will be damaged – the risk
  • SO WHAT – how will this impact project performance? The project will be delayed by an extra day as we source new equipment, and we will need to source another $500 to replace the damaged equipment (effect)

From this starting point, we can further brainstorm some variations using the mind-mapping method.

For example, what else could damage the equipment? It could get dropped.

What else could delay the project by one day? A key team member could fall ill.

And so on…

Critical success factors

Ultimately, successful risk identification depends on the following key factors.

Early identification

As we saw in the last Module, even though uncertainty is greatest at the start of the project, the cost of making changes is relatively low, so the earlier you begin the risk identification and management process, the better.

Iterative identification

Since not all risks can be identified at the start of the project, risk identification must continue throughout the project lifecycle. 

This should be programmed periodically at key milestones or when significant change occurs.

Emergent identification

Risk identification should not be limited to formal events or scheduled reviews – the risk management process should allow for risk identification and escalation at any time in the life of a project.

Comprehensive identification

A broad range of sources of risk should be considered to ensure that as many uncertainties as possible are identified.

Explicit identification of opportunities

Don’t waste all your time and effort chasing negative risks – use the investigative, analytical, and creative processes to identify opportunities too! 

For example, limited access to resources may encourage innovative ways to achieve project objectives.

Multiple perspectives

Engage as many stakeholders as possible in the risk identification process, including risk and subject matter experts. 

Limiting risk identification to the project team is unlikely to expose all foreseeable risks.

Risk ownership

Each risk should be assigned, as soon as possible, to an owner with clear accountability and responsibility for its management.

Objectivity

All human activities are susceptible to bias, especially when dealing with uncertainty, even if the bias is unintentional. 

Therefore, the assumptions that underlie the risks identified should be challenged, allowing for an open and honest identification of each potential issue.

Quizzes
Previous Quiz
Back to Unit
Next Quiz