Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
IST-2000-29518
1.1.1.1 Purpose
This document describes how we will perform the job of managing risks for e-Vote.
It defines roles and responsibilities for participants in the risk processes, the risk management
activities that will be carried out, the schedule and budget for risk management activities, and
any tools and techniques that will be used.
2. Definitions
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 1 of 14
IST-2000-29518
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 2 of 14
IST-2000-29518
2.13. Risk
The chance of damage, loss, injury or destruction.
2.14. Probability
Probability is the likelihood of an event to occur.
2.15. Impact
The cost or consequence of an undesirable event.
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 3 of 14
IST-2000-29518
4. Risk Categories
Possible risks are classified according to the following list. This list can function as checklist
for risk analysis. This list shall be used for filling the Risk Category Field in the document
Risk Documentation Form.
4.1. Supplier Issues
1
Contractual issues
Mismatch between the nature of the task and the procurement process
Skill shortage
To what extent the requirements can be met using currently available and
understood facilities and approaches
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 4 of 14
IST-2000-29518
The risks that the specified requirements will not be achievable in full, or that not
all requirements will
be correctly specified.
5. Risk Documentation
6. Activities
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 5 of 14
IST-2000-29518
A brainstorming session,
or use of the RDF form available from the projects web site for submitting risk factors.
Any consolidated lists of risk items that will be used to identify candidate risks for this project
MUST update this paper.
6.2.2. Participants
Any Team Member or participant can identify a risk and submit the relative document to the
Project Manager.
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 6 of 14
IST-2000-29518
Task
The Risk Officer will assign each risk factor to an Risk Assigned
individual project member, who will estimate the Member [RAPM]
probability the risk could become a problem (scale
of 0.1-1.0) and the impact if it does (either relative
scale of 1-10, or units of dollars or schedule days,
as indicated by the Risk Officer)
The individual analysed risk factors are collected, Risk Officer [RO]
reviewed, and adjusted if necessary. The list of risk
factors is sorted by descending risk exposure
(probability times impact).
Preparation of Contingency Plan
Risk Officer [RO]
Description of estimation of such contingencies and
communicating the information to the Project
Manager or building those contingencies into the
project schedule
Participants
Project
Task
The top ten risks are assigned to individual project
members for development and execution of a
Risk Mitigation Plan.
Participants
Risk Officer [RO]
Risk Assigned
For each assigned risk factor, recommend actions Project Member
that will reduce either the probability of the risk [RAPM]
materializing into a problem, or the severity of the
exposure if it does. Return the Risk Mitigation
Plan to the Risk Officer.
Risk Officer [RO]
The Risk Mitigation Plans for the assigned risk
items are collated into a single list. The completed
Top Ten Risk List is created and made publicly
available on the projects intranet web site.
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 7 of 14
IST-2000-29518
Task
Each individual who is responsible for executing a
risk mitigation plan carries out the mitigation
activities.
Participants
Risk Assigned
Project Member
[RAPM]
3
4
Task
Participants
Risk Assigned
The status and effectiveness of each mitigation Project Member
action is reported to the Risk Officer every two [RAPM]
weeks.
Risk Officer [RO]
The probability and impact for each risk item is
reevaluated and modified if appropriate.
Risk Officer [RO]
If any new risk items have been identified, they
are analyzed as were the items on the original risk
list and added to the risk list.
Risk Officer [RO]
The Top Ten Risk List is regenerated based on the
updated probability and impact for each remaining
risk.
Risk Officer [RO]
Any risk factors for which mitigation actions are
not being effectively carried out, or whose risk
exposure is rising, may be escalated to an
appropriate level of management for visibility and
action.
Task
Participants
A specific document is created by the PM when
Risk Officer [RO]
the risk is closed. The document shall be logged in
Lessons Learned Log [LLL] (see template in
section Forms) and shall contain information
about mitigation of specific risks. The LLL and the
Relative documents shall be stored in Web Site
restricted area for further assessment.
Activity
Description
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 8 of 14
IST-2000-29518
Risk Identification
Risk List
The Risk Management Plan and initial Top Ten Risk List will be
reviewed and approved by the Project Manager on
approximately <date>.
Risk Tracking
10. Plans
All following plans refer to an individual risk.
Guidelines on the content of this plan are.
Risk Idetification
Actions
Roles
Timelines
Conclusions - Estimations
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 9 of 14
IST-2000-29518
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 10 of 14
IST-2000-29518
11. Forms
Reference
e-VOTE/WP-1/D1.3/Final/13-12-2001
LLL
Ref:
Version:
Date &
Location
Page 11 of 14
IST-2000-29518
DOC CODE
PROGRAMME/PROJECT:
IST/e-Vote
AUTHOR
ORDER
DATE UPDATED
Risk
ID1
RISK DESCRIPTION
Risk
Assigned
Member
PRL
CLASSIFICATION:
Int.
PROB
ABILI
TY
(a)
IMPACT
(b)
Risk
Exposure
(a x b)
1
2
3
4
5
6
7
8
9
10
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 12 of 14
IST-2000-29518
Risk Category
Organisation
DOC CODE
RDF
Risk ID: <Sequence
Number>
CLASSIFICATION
Int.
First Indicator: <Describe the earliest indicator or trigger condition that might indicate that the
risk is turning into a problem. >
Improvement Approaches: <State one or more approaches to control, avoid, minimize, or
otherwise limit the risk. Limitation approaches may reduce the probability or the impact. >
Date Started: <State the date
the Improvement plan
implementation was begun. >
Current Status: <Describe the status and effectiveness of the risk limitation actions as of the date
of this report. >
Contingency Plan: <Describe the actions that will be taken to deal with the situation if this risk
factor actually becomes a problem. >
Trigger for Contingency Plan: <State the conditions under which the contingency plan will begin
to be implemented. >
e-VOTE/WP-1/D1.3/Final/13-12-2001
Page 13 of 14
IST-2000-29518
ID
Risk event
Risk
exposure
e-VOTE/WP-1/D1.3/Final/13-12-2001
DOC CODE
RML
CLASSIFICATION
Int.
Mitigation
Strategy
Page 14 of 14