Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Track
Control
Ide
ntif
y
Communicate
& Document
yze
l
a
An
Plan
Defining Risk
Risk is defined as the likelihood of an undesirable scenario
occurring and the significance of the consequence of its
occurrence. Risk may also be defined as a possibility of
loss or injury.
Risk is defined by two characteristics: probability or
likelihood (L) of occurrence and consequence (C) of
occurrence. This is expressed as R = L x C.
Risk Identification
Risk identification should be discrete and continuous.
Periodic risk evaluations should be conducted to identify
risks; however, a continuous process should be established
to regularly review available information in order to identify
risks.
Once the risk has been identified, the appropriate
management level should assign a risk owner. The risk
owner has the overall responsibility for risk management
activities until final closure of the risk.
Risk Analysis
Risk analysis refers to the activities aimed at studying risks
in order to better understand their significance in terms of
likelihood, consequence, and urgency. In many cases, the
risk owner will be able to assign likelihood, consequence,
and timeframe scores based on current knowledge; however
a more detailed risk analysis is necessary to determine
likelihood and consequence(s) of a given risk.
1 2 3 4 5
Likelihood
R=LxC
Consequences
9
10
Risk Planning
Risk planning is the process used to develop candidate
strategies and options for handling the risk, which depend on
the urgency of the risk, the complexity of the risk, and the
risk level. There are many strategies for handling risks,
including risk elimination, risk mitigation, and risk
acceptance.
12
14
15
16
17
18
20
Risk Tracking
Once the handling plan is approved, risk handling activities
will be initiated and risks tracked as appropriate by the
owning organization. The owning organization monitors
progress and regularly updates risk status and information.
An electronic tracking system may be used to automate
tracking, status updates, and reports on risks.
21
Risk Control
Risk control is a feedback process where risk handling plans
may be revised or updated based on observation or other
status updates. Once a risk handling plan is implemented, it
must be monitored to determine if the original plan is
effective. If the plan is not effective, alternate plans must be
put in place to ensure that the risk is appropriately handled.
22
23