1.20 Appendix A Generic Risk Management Process and Tasks



Similar documents
Risk Management Procedure

Risk Management Plan template <TEMPLATE> RISK MANAGEMENT PLAN FOR THE <PROJECT-NAME> PROJECT

Project Risk Management

Project Management Frequently Asked Questions:

Project Risk Analysis toolkit

Project Management Guidebook

PRINCE2:2009 Glossary of Terms (English)

RISK MANAGEMENT POLICY AND STRATEGY. Document Status: Draft. Approved by. Appendix 1. Originator: A Struthers. Updated: A Struthers

RISK MANAGEMENT STRATEGY

Project Risk Management. Presented by Stephen Smith

RISK MANAGEMENT OVERVIEW - APM Project Pathway (Draft) RISK MANAGEMENT JUST A PART OF PROJECT MANAGEMENT

A Risk Management Standard

Part B1: Business case developing the business case

Project Management Toolkit Version: 1.0 Last Updated: 23rd November- Formally agreed by the Transformation Programme Sub- Committee

OE PROJECT CHARTER TEMPLATE

Risk Management approach for Cultural Heritage Projects Based on Project Management Body of Knowledge

The Gateway Review Process

Risk Workshop Overview. MOX Safety Fuels the Future

London Legacy Development Corporation s Statement of Risk Appetite September 2015

Purpose: Content: Definition: Benefits: outputs outcomes benefits Business Case dis-benefit Key Responsibilities: Approach: Executive Developed

Overview TECHIS Carry out risk assessment and management activities

Develop Project Charter. Develop Project Management Plan

Audit Committee, 28 November. HCPC Project Risk Management. Executive summary and recommendations. Introduction

PROJECT RISK MANAGEMENT

Creating A Risk Management Plan

PMI Risk Management Professional (PMI-RMP) Exam Content Outline

NZ Transport Agency Page 1 of 23

Risk Management Within an Organisation

The Lowitja Institute Risk Management Plan

1. What is PRINCE2? Projects In a Controlled Environment. Structured project management method. Generic based on proven principles

Business Continuity Policy

Bridgend County Borough Council. Corporate Risk Management Policy

Risk Management Primer

Business Continuity Management Policy

Network Risk Assessment Guideline

PROJECT RISK MANAGEMENT

Risk Methodology. Contents. Introduction The Risk Management Structure The Risk Management Cycle Methodology...

RISK AND OPPORTUNITY MANAGEMENT STRATEGY

Negative Risk. Risk Can Be Positive. The Importance of Project Risk Management

Digital Archives Migration Methodology. A structured approach to the migration of digital records

Core Infrastructure Risk Management Plan

Capital Works Management Framework Guidance Note. Planning and Control of Capital Costs GN 2.2

1. Background and business case

Confident in our Future, Risk Management Policy Statement and Strategy

Risk Management Policy and Process Guide

THE SOUTH AFRICAN HERITAGE RESOURCES AGENCY ENTERPRISE RISK MANAGEMENT FRAMEWORK

PORTFOLIO, PROGRAMME & PROJECT MANAGEMENT MATURITY MODEL (P3M3)

The Risk Management strategy sets out the framework that the Council has established.

A structured approach to Enterprise Risk Management (ERM) and the requirements of ISO 31000

RISK MANAGEMENT FOR INFRASTRUCTURE

Risk/Issue Management Plan

Project Zeus. Risk Management Plan

Project Management Body of Knowledge (PMBOK) (An Overview of the Knowledge Areas)

PROJECT RISK ANALYSIS AND MANAGEMENT

Appendix V Risk Management Plan Template

INFRASTRUCTURE DISASTER RECOVERY IN LOCAL GOVERNMENT

BUSINESS CONTINUITY MANAGEMENT FRAMEWORK

STANDARDS OF SOUND BUSINESS AND FINANCIAL PRACTICES. ENTERPRISE RISK MANAGEMENT Framework

Clinical Risk Management: Agile Development Implementation Guidance

Departmental Business Continuity Framework. Part 2 Working Guides

PROJECT MANAGEMENT FRAMEWORK

Policy and Procedure Statement

RISK MANAGEMENT POLICY

The University of Adelaide RISK MANAGEMENT HANDBOOK

PROJECT MANAGEMENT METHODOLOGY SECTION 3 -- PLANNING PHASE

Joint Universities Computer Centre Limited ( JUCC ) Information Security Awareness Training- Session Four

Knowledge Area Inputs, Tools, and Outputs. Knowledge area Process group/process Inputs Tools Outputs

Data Communications Company (DCC) price control guidance: process and procedures

IT Project Management Methodology. Project Risk Management Guide. Version 0.3

PROJECT MANAGEMENT PROCESS for MAJOR CAPITAL PROJECTS

Risk Management Policy and Framework

COMPLIANCE REVIEW OF 2006/07 ASSET MANAGEMENT PLAN. Top Energy Limited

Business Continuity Management

Risk Management: Coordinated activities to direct and control an organisation with regard to risk.

The 10 Knowledge Areas & ITTOs

Hazard Identification, Risk Assessment and Management Procedure. Documentation Control

Risk Management Policy

A COMPARISON OF PRINCE2 AGAINST PMBOK

Xavier Catholic College Risk Management - Policy & Procedure

POL ENTERPRISE RISK MANAGEMENT SC51. Executive Services Department BUSINESS UNIT: Executive Support Services SERVICE UNIT:

ENTERPRISE RISK MANAGEMENT FRAMEWORK

Procurement Programmes & Projects P3M3 v2.1 Self-Assessment Instructions and Questionnaire. P3M3 Project Management Self-Assessment

ENTERPRISE RISK MANAGEMENT NARACOORTE LUCINDALE COUNCIL GUIDELINES

Description of Program Management Processes (Initiating, Planning) 2011 PROGstudy.com. All rights reserved

Risk Management Framework

P3M3 Portfolio Management Self-Assessment

Business Continuity Planning Manual. Version 1

RISK MANAGEMENT POLICY

PM Governance. Executive Team ADCA ADCA

Council Meeting Agenda 27/07/15

CCSAPAB2 Develop and agree objectives for archaeological projects

CPM -100: Principles of Project Management

Step by Step Project Planning

Retained Fire Fighters Union. Introduction to PRINCE2 Project Management

Space project management

Enterprise Risk Management

Transcription:

1.20 Appendix A Generic Risk Management Process and Tasks The Project Manager shall undertake the following generic tasks during each stage of Project Development: A. Define the project context B. Identify risks C. Assess risks (analysis and evaluation) D. Manage risks E. Review and update on a periodic basis The risk management process (Tasks A to E) is cyclical. The iterative approach shall increase certainty of outcome through reduction in risk exposure as the project progresses. The objective and details (including responsibilities and outputs) for tasks A to E are described below. Subsequent Sections 3.2 to 3.6 describe their application to the project Stages (Appraisal to Post-Construction). Task A: Define the Project Context The purpose of this task is to define the basic parameters within which risks must be identified and evaluated. It provides a sound basis for identifying risks. appointed by the project manager on larger projects to plan and facilitate a workshop and report the results) are: Determine the project scope per the Project Brief Determine the project objectives (in view of Project Brief) Determine key stakeholders and their requirements Determine statutory or regulatory requirements to be addressed Determine internal policies or regulations to be followed Determine assumptions made in the preparation of the project scope, design or budget e.g. Resource levels or equipment availability made when planning or estimating costs Determine constraints e.g. Site conditions, reporting or approvals cycles Determine the principal work activities or work breakdown structure Determine interfaces - both internal and external to the project and College Confirm project sponsor and organisation - roles and responsibilities Confirm awareness of risk management processes and responsibilities across the project team. Schedule of project objectives and key success criteria Documented project scope and key Tasks Schedule of stakeholders and requirements Schedule of constraints (including regulatory, policy requirements) affecting the project Schedule of assumptions made when preparing project estimates Schedule of Interfaces. Task B: Identify Risks The purpose of this task is to determine the source and cause of risk events and the impact on the project objectives. This task shall also be used to identify opportunities. appointed by the Project Manager on larger to plan and facilitate a workshop and report the results) are:

Identify the anticipated risks in view of the information determined during the earlier Task (defining the context) Group the risks according to the nature of their source, cause and impact Map the risks to the objectives and project activities to ensure relevance and completeness Determine dependency of risks on common causes Clarify risk descriptions and seek additional information as appropriate Use generic or checklists to ensure completeness. The Project Manager shall record risk details in a risk log/register/schedule. This shall be maintained as per Task E. The risk log/register/schedule shall capture the information. The Log/register/schedule shall be capable of being used to report and monitor on a periodic basis, risk: Status Trends Treatment and management performance. Record of each risk (including cause, event and consequences) Record of supporting details (including source of risk). Task C: Assess Risks Task C comprises the ANALYSIS and EVALUATION of risks. The purpose of risk ANALYSIS is to determine the potential impact to the project and College objectives for all identified risks. The areas of risk include: Cost Time Reputation or quality H&S/Environmental/sustainability/waste. Qualitative analysis shall be undertaken by the Project Manager/Team (supported by a risk specialist as appropriate) to determine the relative importance of each risk. Quantitative analysis shall be undertaken subsequently to determine the level of project contingency or to determine the net cost/benefit when deciding management action to mitigate the risk. Quantitative risk analysis (QRA) shall be undertaken by a risk specialist using appropriate software tools. A probabilistic model of project costs and timescales shall be used to determine the variability of project cost and timescales. Models shall be developed using data obtained through project risk workshops, specialist input, previous project records (e.g. closure reports). The project manager and sponsor should assess the benefit of undertaking QRA, however, the level of benefit is likely to be less for small projects and unlikely to be worthwhile for minor works projects. Note: quantitative analysis shall only be undertaken when appropriate estimates of likelihood and consequence can be provided. The results of the risk analysis shall be used to update project contingency costs and schedule (completion dates). Analysis shall be undertaken on a quarterly basis or as follows: Cost analysis: o pre-design development o pre-construction. Schedule (completion date) analysis: o pre-construction. The purpose of risk EVALUATION is to determine which risks are highest priority and which require further or less attention. Tolerance levels have been established at project team and

Capital Projects and Planning levels. These are set out in the Probability Impact diagram Table 1.1. The diagram shows project risks plotted on against the probability and impact scales (highest impact value used). The RED risks are above the agreed threshold determined for management reporting purposes and shall be reported to Capital Projects and Planning as part of periodic and Stage reporting. All RED risks shall be stated as part of the Evaluation and Approval Procedure. Probability Impact Diagram Table 1.1 appointed by the project manager to plan and facilitate a workshop and report the results) are: Compare the estimated value of the risk impact in view of the tolerance thresholds (severe risks shall be escalated to the Estates Executive level in order to provide visibility and appropriate resource/funding for treatment) Agree which threats shall be o accepted (without further treatment ) these insignificant risks shall be retained for monitoring in view of changes in severity during the project o acceptable if worthwhile i.e. can be controlled cost effectively o unacceptable in any circumstances o owned by contracted third parties. Agree which opportunities are: o Critical could significantly enhance savings or benefit the College o Desirable facilitate achievement of project objectives (time or cost savings or quality enhancement) o Negligible return on investment is not adequate to justify action (retain for monitoring). Undertake further analysis and evaluation as appropriate Schedule risks and opportunities which require treatment plans to be prepared.

Risk log/register/schedule including risk owners, ranking, severity details and treatment strategies in view of tolerance levels. Task D: Manage Risks The purpose of this task is to reduce the severity of threats or facilitate the achievement of opportunities impacting the business. Different generic strategies shall be considered for managing risks (either as a threat or opportunity) as follows: 1. Eliminate or avoid by changing or abandoning objectives (threats) 2. Change approach in order to contribute to the achievement of the outcome (opportunities) 3. Share or transfer risks to contracted parties (threats) 4. Involve stakeholders who can help facilitate the outcome (opportunities) 5. Reduce the likelihood of occurrence by addressing causes (threats) 6. Enhance the likelihood of occurrence by process improvements or control (opportunities) 7. Develop fall-back plans/provide contingency funds to respond to the threat if it occurs (threats) appointed by the project manager to plan and facilitate a workshop and report the results) are: Identify Risk Owner (Estates Manager accountable in the event of a risk occurring) Identify the manager with budgetary authority to allocate resource to treat a risk (if not the Risk Owner) Identify Actionees who are best able to contribute to the completion of the planned treatment Determine the actions and timescales to reduce/enhance likelihood of occurrence Identify residual risks (those which remain following treatment i.e. risks that the treatment does not work) Determine secondary risks arising from treatment plans Estimate treatment costs and net benefits of treatment Estimate level of contingency (cost of fall back plans) Obtain appropriate approval for expenditure Agreed mitigation plans shall be included in project schedules/plans The effectiveness of the treatment plan shall be reviewed following implementation and consideration given to the consequences of secondary risks. Risk register stating treatment plans including actions, responsibility, completion date, costs and fall-back/contingency. Task E: Review and Update Risk Tasks A to D above shall be undertaken on a periodic basis during the project. Typically this shall be monthly as part of project progress reporting and upon completion of project stages. The register of key Red risks shall be reported and included in the Project Initiation Document [New link] or Project Change Forms (outside tolerance) [New link] This is to ensure that: New risks relating to changes in the context are identified, recorded and managed Risks which are no longer relevant in view of the context are identified and recorded Changes to risk severity are identified and recorded Current status of treatment plans are monitored Changes to owners or actionees are identified and recorded.

A trend report can be produced showing the progress of risk management throughout the life of the project Where a quantitative risk analysis has been produced, this can be updated to determine the current risk contingency required. Risks shall be reviewed as per the procedure for Tasks A to D above. The risk log/register/schedule and related reports shall be used by the Project Manager to review risks with the project team and the Project Steering Group ( red risks). All risks input, changed or deleted from the risk log/register/schedule shall be reviewed and approved by the Project Manager to ensure risk data is up to date, accurate and complete. Updated risk register stating current risks (including new risks) and status of risks and treatment plans Risk reports stating current risk details and ranking, trends and management performance. The completion of Tasks A to E, responsibilities and outputs during each of the project stages is set out above.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information