Planning risk management (risk mitigation plan ) is the process of figuring out how to handle risks for a project. This process is most helpful because it makes sure that the level, type, and visibility of risk management are all appropriate for the risks and the project’s importance to the company and other stakeholders. This step is either done only once or at set times during the job. Figure below shows the process’s sources, how it works, and what it produces.
You should start the Plan Risk Management process as soon as you think of a project and finish it early on in the project. Later on in the project’s life cycle, like when there is a big phase change or when the project’s scope changes a lot, this process may need to be done again. It may also need to be changed if the Project Risk Management process needs to be changed after a review of how well it was managed.
Plan Risk Management: Inputs
Project Charter
The project Charter lists the main points of the project, its limits, its needs, and any possible risks.
Project Management Plan
To make sure that the risk management plan (risk mitigation plan) fits with the other accepted management plans, it is important to think about all of them when planning Project Risk Management. Methodologies described in other parts of the project management plan could have an effect on the Plan Risk Management process.
Project Documents
It’s possible to use project documents like the stakeholder register as inputs for this process. The stakeholder register lists the people who have an interest in the project and gives an overview of their jobs and how they feel about risk in this project. You can use this to figure out who is responsible for handling project risk and what the project’s risk levels should be.
Enterprise Environmental Factors
Overall risk thresholds set by the organization or key stakeholders are one type of Enterprise environmental factor that can affect the Plan Risk Management process.
Organizational Process Assets
Risk categories, probably set up in a risk breakdown structure; Organizational risk policy; These are just some of the organizational process assets that can affect the Plan Risk Management process. Definitions of risk concepts and terms that everyone agrees on; Models for risk statements, the risk management plan, the risk record, and the risk report; Roles and duties; levels of authority for making decisions; and a repository for lessons learned from projects that were similar in the past.
Plan Risk Management: Tools And Techniques
Expert Judgment
You should look at the information and experience of people or groups who are experts in the following areas:
- Knowing how the company handles risks, including the role of business risk management in this process;
- Managing risks in a way that fits the goals of a project; and
- Different kinds of risks that are likely to happen on projects in the same area.
Data Analysis
Data analysis methods that can be used in this process include a stakeholder analysis to find out how much risk the people involved in the project are willing to take, but are not limited to that.
Meetings
The risk management plan may be developed as part of the project kick-off meeting or a specific planning meeting may be held. Some of the people who might be there are the project manager, major stakeholders, chosen project team members, and team members who are in charge of the project’s risk management process. As needed, people from outside the company may also be invited. This could include buyers, sellers, and regulators. A good facilitator can help people stay on task, agree on important parts of the risk approach, find and get rid of sources of bias, and work out any differences that come up.
Plan Risk Management: Outputs
Risk Management Plan
Part of the project management plan is the risk management plan (risk mitigation plan) , which lays out how risk management tasks will be organized and carried out. Some or all of the following may be part of the risk management plan:
Risk strategy
Describes how risk will be managed on this project in general.
Methodology
This section describes the exact methods, tools, and data sources that will be used to handle project risks.
Roles and responsibilities
Lists the lead, support, and risk management team members for each type of action in the risk management plan and spells out what they are responsible for.
Funding.
Locates the funds needed to carry out tasks connected to Project Risk Management. Establishes rules for how to use management and contingency funds.
Timing
Sets the dates and times for when the Project Risk Management processes will be carried out during the project’s life cycle and the risk management tasks that will be included in the project’s plan.
Risk categories
Give a way to group together different project risks. A risk breakdown structure (RBS) is a popular way to organize risk categories. It shows possible sources of risk in a hierarchical way. An RBS helps the project team think about all the different places where project risks could come from. This can help you find risks or put risks into groups once you’ve found them. There could be a single RBS that all projects in the company use, or there could be more than one RBS framework for different types of projects, or the project itself could make its own RBS. An company may use a custom risk categorization framework instead of an RBS when one is not available. This could be a simple list of categories or a structure based on the project’s goals.
Stakeholder risk appetite.
The risk management plan (risk mitigation plan) lists the level of risk that is acceptable to the project’s key stakeholders. This is because the risk management plan details are based on these risk levels. Stakeholders’ risk appetite should be shown as risk levels that can be measured around each project goal. These levels will tell you how much overall project risk is acceptable. They will also help you figure out how to define probability and effect when you’re evaluating and ranking individual project risks.
Definitions of risk probability and impacts
The definitions of risk probability and impact levels are unique to the project and take into account the organization’s and key stakeholders’ risk appetite and limits. The project could come up with its own specific definitions of probability and impact levels, or it could start with ones that the company gives it. A more detailed risk method uses more levels (usually five), while a simpler process uses fewer levels (usually three).
Probability and impact matrix
Some organizations set priority rules before a project even starts and store them as part of their process assets. Other organizations may make these rules specific to a project. A probability and effect matrix shows both opportunities and threats. For opportunities, the impact is positive, and for threats, it is negative. For chance and effect, you can use descriptive words (like “very high,” “high,” “medium,” “low,” and “very low”) or numbers. When numbers are used, they can be added to get a probability-impact score for each risk. This lets you figure out how important each risk is compared to the others at each priority level.
Reporting formats
Reporting formats lay out how the results of the Project Risk Management method will be written down, analyzed, and shared. It talks about what should be in the risk register, the risk report, and any other outputs from the Project Risk Management steps in this part of the risk management plan.
Tracking.
With tracking documents, you can keep track of risk activities and check that risk management systems are working as they should.
References :