Professional Documents
Culture Documents
Risk: Definition: Effect of Uncertainties On Objectives (ISO 31000:2018)
Risk: Definition: Effect of Uncertainties On Objectives (ISO 31000:2018)
Assessment
of risks Resources
maximize
Prioritization realization of opportunities
of risks
Risk Management Steps
Subjective Analytic
9 9 27 45 63 81
7 7 21 35 49 63
5 5 15 25 35 45
3 3 9 15 21 27
1 1 3 5 7 9
Impact
3. Analyze Risks
Probability and Impact Matrix
Very Low Medium High Very
Low High
High
Impact
4. Plan Risk Response
Examples: Avoid
❖ Simplify the processes Mitigate
❖ Develop prototype Transfer
❖ Additional inspections
Accept
❖ Lessons Learned from past
4. Plan Risk Response
Transfer the risk to a third party
Negative Risk
Examples:
Avoid
❖ Insurance
❖ Performance warranty Mitigate
❖ Subcontract Transfer
Accept
4. Plan Risk Response
Accept the risk if:
❖ no action is feasible or
❖ the probability and/or impact is too small.
Negative Risk
Avoid
❖ Two types of acceptance: Mitigate
❖ Passive Acceptance: No plan created to
deal with these Transfer
❖ Active Acceptance: Contingency plan is Accept
created and risks are monitored
4. Plan Risk Response
Exploit: Make sure that positive risk
happens and make best use of the
opportunity Positive Risk
Exploit
Examples: Enhance
❖ Put best team members and more
Share
resources
Accept
4. Plan Risk Response
Enhance: Increase the probability and/or
impact of the risk
Positive Risk
Examples: Exploit
❖ Put best team members and more Enhance
resources
Share
Accept
4. Plan Risk Response
Share the opportunity with a third party
Positive Risk
Examples:
Exploit
❖ Forming team, Joint Venture or a
company with a third party. Enhance
Share
Accept
4. Plan Risk Response
Accept the opportunity when it happens
but not actively pursuing it
Positive Risk
Examples: Exploit
❖ Probability and rewards are not Enhance
attractive.
Share
Accept
5. Monitor and Control Risks