SlideShare une entreprise Scribd logo

Managing risk with deliverables planning

Glen Alleman
Glen Alleman

This document discusses managing risk through continuous risk management (CRM). It introduces the five principles of risk management and outlines the CRM process, which includes identifying risks, analyzing and prioritizing them, planning mitigations, tracking mitigation progress and risks, making decisions based on risk data, and communicating throughout the project. The presentation provides examples of risk statements, evaluation criteria, classification approaches, and integrating risks and mitigation plans into project schedules. The goal of CRM is to continually identify, assess, and mitigate risks to improve project outcomes.

Technologie
1  sur  50
Télécharger pour lire hors ligne
MANAGING RISK WITH DELIVERABLES PLANNING Without metrics, you’re just another guy with an opinion. — Stephan Leschka, Hewlett Packard 1
Agenda for the Next 4 Hours ¨ Review the five principles of Risk Management ¨ Introduce of the Continuous Risk Management (CRM) ¨ Illustrate each CRM process area with example artifacts or outcomes ¨ Familiarize all participants with the concept of Risk Management and their contributions to the 1st step – Identifying Risk ¨ Understand what data needs to be gathered, so the 1st cut at a measure of program risk can be constructed. 2
But, Before we Start, Let’s Understand our Role Here … ¨ Risk Management is a profession ¨ Risk Management is Program Management ¨ Risk Management is how adults manage projects ¨ Managing risks goes hand-in-glove with managing work, people, processes, vendors, and the client 3
What’s Risk Management All About? 4
But we can’t make decisions until we get the right information, right? 5
Risks are part of the project, handled the same way all other work is handled – with a plan 6
Five Easy Pieces of Risk Management Risk Management is more than the processes called out in PMBOK® (Chapter 11) Risk Management IS Project Management Glen B. Alleman Lewis and Fowler www.lewisandfowler.com galleman@lewisandfowler.com 7
1. Hope is not a strategy 2. No single point estimate of cost or schedule can be correct 3. Cost, Schedule, and Technical Performance are inseparable 4. Risk management requires adherence to a well defined process 5. Communication is the Number One success factor 8
Hope is Not a Strategy A Ship on the Beach is a Lighthouse to the Sea – Dutch Proverb I 9
II No Point Estimate By Itself Can Be Correct 10
Cost, Schedule, & Technical Performance are Inseparable III 11
Risk Management Demands a Well Defined Process IV 12
V Risk Management Demands Direct Communication Between All Parties 13
§ Lack of predictive variance analysis § Untimely and unrealistic Latest Revised Estimates (LRE) § Progress not monitored in a regular and consistent manner § Lack of vertical and horizontal traceability cost and schedule data for corrective action § Lack of internal surveillance and controls § Managerial actions not demonstrated using Earned Value § Inattention to budgetary responsibilities § Work authorizations that are not always followed § Issues with Budget and data reconciliation § Lack of an integrated management system § Baseline fluctuations and frequent replanning § Current period and retroactive changes § Improper use of management reserve § EV techniques that do not reflect actual performance The Project Train Wrecks Starts When There is… Mary K. Evans Picture Library 14
PUTTING THESE PRINCIPLES INTO PRACTICE Principles are not the same as Practice 15
Principles and Practices are not the same In theory there is no difference between theory and practice. In practice there is. 16
Three Conditions of Risk ¨ The potential for loss must exist. ¨ Uncertainty with respect to the eventual outcome must be present. ¨ Some choice or decision is required to deal with the uncertainty and potential for loss. 17
Mission-Oriented Success Analysis and Improvement Criteria (MOSAIC) ¨ Establish and maintain confidence that objectives will be achieved successfully ¨ A suite of risk–based methods for assessing and managing complex projects and processes. ¨ Produces a broad overview of the current state of risk and opportunity for a project or process. 18
Mission Work Processes Constraints Tasking, Orders, and Plans Operational Processes Resources § Stability § Completeness § Clarity § Validity § Feasibility § Precedent § Timeliness § Formality § Suitability § Process Control § Familiarity § Product Control § Schedule § Staff § Budget § Facilities § Tools Mission Execution Maintenance Process Policies § Efficiency § Effectiveness § Complexity § Timeliness § Safety § Formality § Suitability § Process Control § Familiarity § Service Quality § Laws and Regulations § Restrictions § Contractual Constraints Product and Service Management Processes Interfaces § Usability § Effectiveness § Timeliness § Accuracy § Correctness § Operational Systems § Planning § Organization § Management Experience § Program Interfaces § Customer / User Community § Associate Agencies § Contractors § Senior Leadership § Vendors § Politics Operational Systems Management Methods § Throughput § Suitability § Usability § Familiarity § Reliability § Security § Inventory § Installations § System Support § Monitoring § Personnel Management § Quality Assurance § Configuration Management Work Environment § Quality Attitude § Cooperation § Communication § Morale 19
AN INTRODUCTION TO CONTINUOUS RISK MANAGEMENT (CRM) CRM is the Software Engineering Institute’s framework for managing risk in the context of system integration, COTS based product development, and the management of these activities. 20
Continuous Risk Management 21
Continuous Risk Management Stage Actionable Steps Identify Continually ask, “what could go wrong?” Analyze Continually ask, “which risks are most critical to mitigate?” Plan Develop mitigation approaches for the most critical risks Track Track the mitigation plan and the risk Control Make decisions based on data Communicate Ensure a free-flow of information throughout the project 22
Putting Continuous Risk Management Together Identify Analyze Plan Track Control Identify Risk Issues and Concerns Evaluate, classify, and prioritize risks Decide what should be done about risks Monitor risk metrics and verify/validate mitigations Make risk decisions Subproject and partner data/constraints, hazard analysis, FMEA, FTA, etc. Risk data: test data, expert opinion, hazard analysis, FMEA, FTA, lessons learned, technical analysis Resources Replan Mitigation Program/project data (metrics information) Statement of risk Risk classification, Likelihood Consequence, Timeframe Risk prioritization Research, Watch (tracking requirements) Acceptance Rationale, Mitigation Plans Risk status reports on: Risks Risk Mitigation Plans Close or Accept Risks Invoke contingency plans Continue to track 23
Four (4) Steps to Deploying CRM Step Action 1 Establish an enterprise risk management process SEI CRM Process with Mitre Risk Registry is a start 2 Establish Risk Process owner and document the process Org chart Risk Manager established, Risk owners for deliverables are next 3 Provide training in the standard risk management process Engage risk owners 4 Monitor and enforce the implementation of Risk Management Weekly risk board meeting 24
Search for and locate risks before they become issues or problems. Capture statements of risk and context. 25
Capture a Statement of Risk ¨ Consider and record the conditions that are causing concern ¨ Create a statement of the risk in a concise description, which can be understood and acted on ¤ Condition: a single phrase describing the circumstances ¤ Consequences: a single phrase describing the key, possible negative outcome(s) 26
Capture the Context of a Risk ¨ A brief, concise description of the conditions and consequences of the risk ¨ Provide enough information to ensure the original intent of the risk can be understood, especially after some time has passed 27
Transform risk data into decision making information. Risk analysis is performed to determine what is important to the project and to set priorities. 28
Evaluating Attributes of Risks ¨ Impact: the loss or effect on the project if the risk occurs ¨ Probability: the likelihood the risk will occur ¨ Timeframe: the period when action is required in order to mitigate or retire the risk 29
Sample Risk Evaluation A B C D E Negligible Minor Moderate Significant Severe E Very Likely Low Med Medium Med Hi High High D Likely Low Low Med Medium Med Hi High C Possible Low Low Med Medium Med Hi Med Hi B Unlikely Low Low Med Low Med Medium Med Hi A Very Unlikely Low Low Low Med Medium Medium 30
Classifying Risks ¨ Grouping risks based on shared characteristics ¨ Identify duplicate risks 31
Risk Evaluation Classification Probability Risk Rating > 70% E: Very Likely 40% to 70% D: Likely 10% to 40% C: Possible 1% to 40% B: Unlikely < 1% A: Very Unlikely Budget Over Run Impact Rating > 15% of budget E: Severe 10% to 15% of budget D: Significant 6% to 10% of budget C: Moderate 2% to 6% of budget B: Minor < 2% of budget A: Negligible 32
Prioritizing Risks ¨ Partitioning risks or groups of risks based on the Borda “vital few” scale ¨ Ranking the risks based on a criteria ¨ Separate risk to be dealt with first (the vital few) when allocating resources 33
The Borda Rank ¨ Which risk of more critical? ¨ Where should resources be allocated to eliminate the most troublesome areas in the program? ¨ Using this approach – ties for “the most important – often result. ¨ Borda Ranking deals with this result, which ranks risks according to their probability of occurrence and their impact ( ) i ik k b N r = - å “Risk Matrix: An Approach for Identifying, Assessing, and Ranking Program Risks,” Paul Garvey and Zachary Lansdowne, Air Force of Logistics, Vol XXII, Number 1 34
Translate risk information into decisions and mitigating actions and implement those actions. Produce plans for mitigating risks. 35
Assign Responsibility ¨ Three choices for assigning responsibility ¤ Keep the risk ¤ Transfer the risk upward in the organization or to another organization ¤ Delegate the risk within the organization 36
Determine the Approach ¨ Accept the risk – do nothing ¨ Mitigate the risk – eliminate or reduce ¨ Watch the risk – monitor for critical changes 37
Define Scope and Actions ¨ Action Item List for less complex mitigations ¤ A simple means of documenting and tracking risk mitigations ¨ Task Plans with schedules and budgets for complex mitigations ¤ These plans must be embedded in the Integrated Master Schedule 38
Monitor risk indicators and mitigation plans. Indicators and trends provide information to activate plans and contingencies. Review these plans periodically to measure progress and identify new risks. 39
The Risk Register 40
Integrate Risk with the Master Schedule ¨ Budget and resources assigned from Risk Management reserve ¨ Activation of risk activities through the Risk Management Board ¨ Adjustments to Performance Measurement Baseline reflect Risk activities ¨ Measure risk activities in the same way as other planned activities 41
Correct for deviations from the risk mitigation plans. Actions can lead to corrections in products or processes. Changes to risks, risks that become problems, or faulty plans require adjustments in plans or actions. 42
Analyze Risks ¨ Examine risks for trends, deviations, and anomalies ¨ Achieve a clear understanding of the current status of each risk and mitigation plan 43
Decide ¨ Replan ¨ Close the risk ¨ Invoke the contingency plan ¨ Continue tracking and executing the current plan 44
Execute ¨ If a planned action is made, open the Work Packages for the mitigation or retirement activities ¨ If it decided to continue tracking, the risk remains in the tracking state until the next review 45
Provide information and feedback to the project on the risk activities, current risks, and emerging risks. 46
Risk Communication Process Risk Management Processes and their Communication to the Program Team Determine sources and categories Define parameters to analyze and categorize risks Define parameters used to control the risk management effort Establish and maintain a strategy for risk management Identify and document risks Evaluate and categorize each identified risk using defined categories and parameters and determine relative priority Develop risk Handling Plan for important risks as defined by the risk management strategy Monitor status of risk periodically and implement risk handling plan as appropriate Establish and maintain organizational policy for planning and performing risk management Provide adequate resources for performing risk management, developing work products and providing services Assign responsibility and authority for performing the process Train staff in support of risk management processes Place designated work products under appropriate configuration management Identify and involve relevant stakeholders Monitor and control risk management processes Objectively evaluate adherence to risk management processes 47
Risk Management and the IMS 48
Linking Risks with the IMS 49 The situation What to do Risk identified during the program planning phase (IMP) § Place risk mitigation tasks into IMS and allocate resources § Do not duplicate risk mitigation tasks in risk database Risk threat to a task in the IMS § Enter risk mitigation actions into risk database Existing risk growing beyond the current scope of a team but within the scope of the program § Allocate management reserves § Place risk mitigation actions in risk database New risk beyond the current scope of the program § Obtain additional resources § Develop plan and allocate resources § Place risk mitigation tasks in IMS
50

Recommandé

Step by step guide on project risk management
Step by step guide on project risk managementStep by step guide on project risk management
Step by step guide on project risk management
PMC Mentor
 
Integrated Project Management
Integrated Project ManagementIntegrated Project Management
Integrated Project Management
Inam Khosa
 
Episode 25 : Project Risk Management
Episode 25 : Project Risk ManagementEpisode 25 : Project Risk Management
Episode 25 : Project Risk Management
SAJJAD KHUDHUR ABBAS
 
Focus on the nine I's (v9)
Focus on the nine I's (v9)Focus on the nine I's (v9)
Focus on the nine I's (v9)
Glen Alleman
 
Risk Analysis : PMP- Project Risk Management
Risk Analysis : PMP- Project Risk ManagementRisk Analysis : PMP- Project Risk Management
Risk Analysis : PMP- Project Risk Management
Saket Bansal
 
Project controls
Project controlsProject controls
Project controls
Ashok Kumar
 
Schedule levels-as-presented 02-may11
Schedule levels-as-presented 02-may11Schedule levels-as-presented 02-may11
Schedule levels-as-presented 02-may11
PMA Consultants
 
AXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
AXELOS - P3O® - Portfolio, Programme and Project Offices - FoundationAXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
AXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
Mirosław Dąbrowski C-level IT manager, CEO, Agile, ICF Coach, Speaker
 

Recommandé

Step by step guide on project risk management
Step by step guide on project risk managementStep by step guide on project risk management
Step by step guide on project risk management
PMC Mentor
 
Integrated Project Management
Integrated Project ManagementIntegrated Project Management
Integrated Project Management
Inam Khosa
 
Episode 25 : Project Risk Management
Episode 25 : Project Risk ManagementEpisode 25 : Project Risk Management
Episode 25 : Project Risk Management
SAJJAD KHUDHUR ABBAS
 
Focus on the nine I's (v9)
Focus on the nine I's (v9)Focus on the nine I's (v9)
Focus on the nine I's (v9)
Glen Alleman
 
Risk Analysis : PMP- Project Risk Management
Risk Analysis : PMP- Project Risk ManagementRisk Analysis : PMP- Project Risk Management
Risk Analysis : PMP- Project Risk Management
Saket Bansal
 
Project controls
Project controlsProject controls
Project controls
Ashok Kumar
 
Schedule levels-as-presented 02-may11
Schedule levels-as-presented 02-may11Schedule levels-as-presented 02-may11
Schedule levels-as-presented 02-may11
PMA Consultants
 
AXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
AXELOS - P3O® - Portfolio, Programme and Project Offices - FoundationAXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
AXELOS - P3O® - Portfolio, Programme and Project Offices - Foundation
Mirosław Dąbrowski C-level IT manager, CEO, Agile, ICF Coach, Speaker
 
How To Build A PMO
How To Build A PMOHow To Build A PMO
How To Build A PMO
TURKI , PMP
 
07. Project Integration Management
07. Project Integration Management07. Project Integration Management
07. Project Integration Management
BhuWan Khadka
 
Project Risk Management
Project Risk ManagementProject Risk Management
Project Risk Management
Andersson Lujan Ojeda
 
Project risk management focus on risk identification techniques
Project risk management focus on risk identification techniquesProject risk management focus on risk identification techniques
Project risk management focus on risk identification techniques
Marco De Santis, PMP, CFPP
 
Project Planning Scheduling
Project Planning SchedulingProject Planning Scheduling
Project Planning Scheduling
Sadhanandavel Ramdoss
 
tcc primavera
tcc primaveratcc primavera
tcc primavera
Jaspreet singh
 
From WBS to Integrated Master Schedule
From WBS to Integrated Master ScheduleFrom WBS to Integrated Master Schedule
From WBS to Integrated Master Schedule
Glen Alleman
 
PMO (Project Management Office)
PMO (Project Management Office)PMO (Project Management Office)
PMO (Project Management Office)
Dilawar Abbas
 
Introduction to Project Management
Introduction to Project ManagementIntroduction to Project Management
Introduction to Project Management
movinghats
 
Project Risk Management
Project Risk ManagementProject Risk Management
Project Risk Management
Kelvin Fredson
 
Project Planning
Project PlanningProject Planning
Project Planning
Srinivasan Rengasamy
 
project risk management
project risk managementproject risk management
project risk management
Ashima Thakur
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
Croydon Consulting, LLC
 
Project Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptxProject Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptx
ShwetaMahdole
 
PMO Overview June 2009
PMO Overview June 2009PMO Overview June 2009
PMO Overview June 2009
Chevy Marchosky
 
Statement of-work
Statement of-workStatement of-work
Statement of-work
Daniel Zaremba
 
PMO Kick-Off Presentation
PMO Kick-Off PresentationPMO Kick-Off Presentation
PMO Kick-Off Presentation
Ebru Seiwert
 
Project evaluation
Project evaluationProject evaluation
Project evaluation
Keshav Maheshwari
 
Risk Management Essentials for Bankers
Risk Management Essentials for BankersRisk Management Essentials for Bankers
Risk Management Essentials for Bankers
David Vu
 
One page effective project status report
One page effective project status reportOne page effective project status report
One page effective project status report
Techno-PM PTY LTD
 
Managing risk as Opportunity
Managing risk as OpportunityManaging risk as Opportunity
Managing risk as Opportunity
Glen Alleman
 
Final Class Presentation on Determining Project Stakeholders & Risks.pptx
Final Class Presentation on Determining Project Stakeholders & Risks.pptxFinal Class Presentation on Determining Project Stakeholders & Risks.pptx
Final Class Presentation on Determining Project Stakeholders & Risks.pptx
GeorgeKabongah2
 

Contenu connexe

Tendances

How To Build A PMO
How To Build A PMOHow To Build A PMO
How To Build A PMO
TURKI , PMP
 
Project Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptxProject Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptx
ShwetaMahdole
 

Tendances (20)

How To Build A PMO
How To Build A PMOHow To Build A PMO
How To Build A PMO
 
07. Project Integration Management
07. Project Integration Management07. Project Integration Management
07. Project Integration Management
 
Project Risk Management
Project Risk ManagementProject Risk Management
Project Risk Management
 
Project risk management focus on risk identification techniques
Project risk management focus on risk identification techniquesProject risk management focus on risk identification techniques
Project risk management focus on risk identification techniques
 
Project Planning Scheduling
Project Planning SchedulingProject Planning Scheduling
Project Planning Scheduling
 
tcc primavera
tcc primaveratcc primavera
tcc primavera
 
From WBS to Integrated Master Schedule
From WBS to Integrated Master ScheduleFrom WBS to Integrated Master Schedule
From WBS to Integrated Master Schedule
 
PMO (Project Management Office)
PMO (Project Management Office)PMO (Project Management Office)
PMO (Project Management Office)
 
Introduction to Project Management
Introduction to Project ManagementIntroduction to Project Management
Introduction to Project Management
 
Project Risk Management
Project Risk ManagementProject Risk Management
Project Risk Management
 
Project Planning
Project PlanningProject Planning
Project Planning
 
project risk management
project risk managementproject risk management
project risk management
 
Enterprise Risk Management
Enterprise Risk ManagementEnterprise Risk Management
Enterprise Risk Management
 
Project Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptxProject Planning & Work breakdown Structure.pptx
Project Planning & Work breakdown Structure.pptx
 
PMO Overview June 2009
PMO Overview June 2009PMO Overview June 2009
PMO Overview June 2009
 
Statement of-work
Statement of-workStatement of-work
Statement of-work
 
PMO Kick-Off Presentation
PMO Kick-Off PresentationPMO Kick-Off Presentation
PMO Kick-Off Presentation
 
Project evaluation
Project evaluationProject evaluation
Project evaluation
 
Risk Management Essentials for Bankers
Risk Management Essentials for BankersRisk Management Essentials for Bankers
Risk Management Essentials for Bankers
 
One page effective project status report
One page effective project status reportOne page effective project status report
One page effective project status report
 

Similaire à Managing risk with deliverables planning

project_risk_mgmt_final 1.ppt
project_risk_mgmt_final 1.pptproject_risk_mgmt_final 1.ppt
project_risk_mgmt_final 1.ppt
BetshaTizazu2
 
WHATs NEW IN RISK ASSESSMENT
WHATs NEW IN RISK ASSESSMENTWHATs NEW IN RISK ASSESSMENT
WHATs NEW IN RISK ASSESSMENT
Fred Travis
 
Critical role of_risk_assessment_in_international_projects_en
Critical role of_risk_assessment_in_international_projects_enCritical role of_risk_assessment_in_international_projects_en
Critical role of_risk_assessment_in_international_projects_en
Vyacheslav Guzovsky
 
Risk Management as an enabler for project success
Risk Management as an enabler for project successRisk Management as an enabler for project success
Risk Management as an enabler for project success
Association for Project Management
 
Qrm presentation
Qrm presentationQrm presentation
Qrm presentation
Geetha Svcp
 

Similaire à Managing risk with deliverables planning (20)

Managing risk as Opportunity
Managing risk as OpportunityManaging risk as Opportunity
Managing risk as Opportunity
 
Final Class Presentation on Determining Project Stakeholders & Risks.pptx
Final Class Presentation on Determining Project Stakeholders & Risks.pptxFinal Class Presentation on Determining Project Stakeholders & Risks.pptx
Final Class Presentation on Determining Project Stakeholders & Risks.pptx
 
PMI project_risk_management_final_2022.ppt
PMI project_risk_management_final_2022.pptPMI project_risk_management_final_2022.ppt
PMI project_risk_management_final_2022.ppt
 
project_risk_mgmt_final.ppt
project_risk_mgmt_final.pptproject_risk_mgmt_final.ppt
project_risk_mgmt_final.ppt
 
project_risk_mgmt_final.ppt
project_risk_mgmt_final.pptproject_risk_mgmt_final.ppt
project_risk_mgmt_final.ppt
 
Managing Risk as Opportunity
Managing Risk as OpportunityManaging Risk as Opportunity
Managing Risk as Opportunity
 
project_risk_mgmt_final 1.ppt
project_risk_mgmt_final 1.pptproject_risk_mgmt_final 1.ppt
project_risk_mgmt_final 1.ppt
 
“Construction Risk Management”
“Construction Risk Management”“Construction Risk Management”
“Construction Risk Management”
 
WHATs NEW IN RISK ASSESSMENT
WHATs NEW IN RISK ASSESSMENTWHATs NEW IN RISK ASSESSMENT
WHATs NEW IN RISK ASSESSMENT
 
Risk management
Risk managementRisk management
Risk management
 
8. project risk management
8. project risk management8. project risk management
8. project risk management
 
Risk Management and Risk Transfer
Risk Management and Risk TransferRisk Management and Risk Transfer
Risk Management and Risk Transfer
 
Online PMP Training Material for PMP Exam - Risk Management Knowledge Area
Online PMP Training Material for PMP Exam - Risk Management Knowledge AreaOnline PMP Training Material for PMP Exam - Risk Management Knowledge Area
Online PMP Training Material for PMP Exam - Risk Management Knowledge Area
 
Project Risk management
Project Risk management Project Risk management
Project Risk management
 
Webinar - Building Team Efficiency and Effectiveness
Webinar - Building Team Efficiency and EffectivenessWebinar - Building Team Efficiency and Effectiveness
Webinar - Building Team Efficiency and Effectiveness
 
Critical role of_risk_assessment_in_international_projects_en
Critical role of_risk_assessment_in_international_projects_enCritical role of_risk_assessment_in_international_projects_en
Critical role of_risk_assessment_in_international_projects_en
 
Risk and Geopolitics (Singapore - November 2009)
Risk and Geopolitics (Singapore - November 2009)Risk and Geopolitics (Singapore - November 2009)
Risk and Geopolitics (Singapore - November 2009)
 
Risk Management as an enabler for project success
Risk Management as an enabler for project successRisk Management as an enabler for project success
Risk Management as an enabler for project success
 
Qrm presentation
Qrm presentationQrm presentation
Qrm presentation
 
Risk Management (1) (1).ppt
Risk Management (1) (1).pptRisk Management (1) (1).ppt
Risk Management (1) (1).ppt
 

Plus de Glen Alleman

Plus de Glen Alleman (20)

A Gentle Introduction to the IMP/IMS
A Gentle Introduction to the IMP/IMSA Gentle Introduction to the IMP/IMS
A Gentle Introduction to the IMP/IMS
 
Increasing the Probability of Project Success
Increasing the Probability of Project SuccessIncreasing the Probability of Project Success
Increasing the Probability of Project Success
 
Process Flow and Narrative for Agile+PPM
Process Flow and Narrative for Agile+PPMProcess Flow and Narrative for Agile+PPM
Process Flow and Narrative for Agile+PPM
 
Practices of risk management
Practices of risk managementPractices of risk management
Practices of risk management
 
Principles of Risk Management
Principles of Risk ManagementPrinciples of Risk Management
Principles of Risk Management
 
Deliverables Based Planning, PMBOK® and 5 Immutable Principles of Project Suc...
Deliverables Based Planning, PMBOK® and 5 Immutable Principles of Project Suc...Deliverables Based Planning, PMBOK® and 5 Immutable Principles of Project Suc...
Deliverables Based Planning, PMBOK® and 5 Immutable Principles of Project Suc...
 
From Principles to Strategies for Systems Engineering
From Principles to Strategies for Systems EngineeringFrom Principles to Strategies for Systems Engineering
From Principles to Strategies for Systems Engineering
 
NAVAIR Integrated Master Schedule Guide guide
NAVAIR Integrated Master Schedule Guide guideNAVAIR Integrated Master Schedule Guide guide
NAVAIR Integrated Master Schedule Guide guide
 
Building a Credible Performance Measurement Baseline
Building a Credible Performance Measurement BaselineBuilding a Credible Performance Measurement Baseline
Building a Credible Performance Measurement Baseline
 
Integrated master plan methodology (v2)
Integrated master plan methodology (v2)Integrated master plan methodology (v2)
Integrated master plan methodology (v2)
 
IMP / IMS Step by Step
IMP / IMS Step by StepIMP / IMS Step by Step
IMP / IMS Step by Step
 
DHS - Using functions points to estimate agile development programs (v2)
DHS - Using functions points to estimate agile development programs (v2)DHS - Using functions points to estimate agile development programs (v2)
DHS - Using functions points to estimate agile development programs (v2)
 
Making the impossible possible
Making the impossible possibleMaking the impossible possible
Making the impossible possible
 
Heliotropic Abundance
Heliotropic AbundanceHeliotropic Abundance
Heliotropic Abundance
 
Capabilities based planning
Capabilities based planningCapabilities based planning
Capabilities based planning
 
Process Flow and Narrative for Agile
Process Flow and Narrative for AgileProcess Flow and Narrative for Agile
Process Flow and Narrative for Agile
 
Building the Performance Measurement Baseline
Building the Performance Measurement BaselineBuilding the Performance Measurement Baseline
Building the Performance Measurement Baseline
 
Program Management Office Lean Software Development and Six Sigma
Program Management Office Lean Software Development and Six SigmaProgram Management Office Lean Software Development and Six Sigma
Program Management Office Lean Software Development and Six Sigma
 
Policy and Procedure Rollout
Policy and Procedure RolloutPolicy and Procedure Rollout
Policy and Procedure Rollout
 
Integrated Master Plan Development
Integrated Master Plan DevelopmentIntegrated Master Plan Development
Integrated Master Plan Development
 

Dernier

Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
Overkill Security
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Jeffrey Haguewood
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
panagenda
 

Dernier (20)

ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemkeProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
ProductAnonymous-April2024-WinProductDiscovery-MelissaKlemke
 
Exploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone ProcessorsExploring the Future Potential of AI-Enabled Smartphone Processors
Exploring the Future Potential of AI-Enabled Smartphone Processors
 
A Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source MilvusA Beginners Guide to Building a RAG App Using Open Source Milvus
A Beginners Guide to Building a RAG App Using Open Source Milvus
 
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
Apidays New York 2024 - Accelerating FinTech Innovation by Vasa Krishnan, Fin...
 
Ransomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdfRansomware_Q4_2023. The report. [EN].pdf
Ransomware_Q4_2023. The report. [EN].pdf
 
Real Time Object Detection Using Open CV
Real Time Object Detection Using Open CVReal Time Object Detection Using Open CV
Real Time Object Detection Using Open CV
 
Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...Apidays New York 2024 - The value of a flexible API Management solution for O...
Apidays New York 2024 - The value of a flexible API Management solution for O...
 
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, AdobeApidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
Apidays New York 2024 - Scaling API-first by Ian Reasor and Radu Cotescu, Adobe
 
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost SavingRepurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
Repurposing LNG terminals for Hydrogen Ammonia: Feasibility and Cost Saving
 
AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024AXA XL - Insurer Innovation Award Americas 2024
AXA XL - Insurer Innovation Award Americas 2024
 
Boost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdfBoost Fertility New Invention Ups Success Rates.pdf
Boost Fertility New Invention Ups Success Rates.pdf
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Strategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a FresherStrategies for Landing an Oracle DBA Job as a Fresher
Strategies for Landing an Oracle DBA Job as a Fresher
 
ICT role in 21st century education and its challenges
ICT role in 21st century education and its challengesICT role in 21st century education and its challenges
ICT role in 21st century education and its challenges
 
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
Web Form Automation for Bonterra Impact Management (fka Social Solutions Apri...
 
Why Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire businessWhy Teams call analytics are critical to your entire business
Why Teams call analytics are critical to your entire business
 
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
Connector Corner: Accelerate revenue generation using UiPath API-centric busi...
 
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ..."I see eyes in my soup": How Delivery Hero implemented the safety system for ...
"I see eyes in my soup": How Delivery Hero implemented the safety system for ...
 
MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024MINDCTI Revenue Release Quarter One 2024
MINDCTI Revenue Release Quarter One 2024
 
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
Emergent Methods: Multi-lingual narrative tracking in the news - real-time ex...
 

Managing risk with deliverables planning

  • 1. MANAGING RISK WITH DELIVERABLES PLANNING Without metrics, you’re just another guy with an opinion. — Stephan Leschka, Hewlett Packard 1
  • 2. Agenda for the Next 4 Hours ¨ Review the five principles of Risk Management ¨ Introduce of the Continuous Risk Management (CRM) ¨ Illustrate each CRM process area with example artifacts or outcomes ¨ Familiarize all participants with the concept of Risk Management and their contributions to the 1st step – Identifying Risk ¨ Understand what data needs to be gathered, so the 1st cut at a measure of program risk can be constructed. 2
  • 3. But, Before we Start, Let’s Understand our Role Here … ¨ Risk Management is a profession ¨ Risk Management is Program Management ¨ Risk Management is how adults manage projects ¨ Managing risks goes hand-in-glove with managing work, people, processes, vendors, and the client 3
  • 5. But we can’t make decisions until we get the right information, right? 5
  • 6. Risks are part of the project, handled the same way all other work is handled – with a plan 6
  • 7. Five Easy Pieces of Risk Management Risk Management is more than the processes called out in PMBOK® (Chapter 11) Risk Management IS Project Management Glen B. Alleman Lewis and Fowler www.lewisandfowler.com galleman@lewisandfowler.com 7
  • 8. 1. Hope is not a strategy 2. No single point estimate of cost or schedule can be correct 3. Cost, Schedule, and Technical Performance are inseparable 4. Risk management requires adherence to a well defined process 5. Communication is the Number One success factor 8
  • 9. Hope is Not a Strategy A Ship on the Beach is a Lighthouse to the Sea – Dutch Proverb I 9
  • 11. Cost, Schedule, & Technical Performance are Inseparable III 11
  • 12. Risk Management Demands a Well Defined Process IV 12
  • 14. § Lack of predictive variance analysis § Untimely and unrealistic Latest Revised Estimates (LRE) § Progress not monitored in a regular and consistent manner § Lack of vertical and horizontal traceability cost and schedule data for corrective action § Lack of internal surveillance and controls § Managerial actions not demonstrated using Earned Value § Inattention to budgetary responsibilities § Work authorizations that are not always followed § Issues with Budget and data reconciliation § Lack of an integrated management system § Baseline fluctuations and frequent replanning § Current period and retroactive changes § Improper use of management reserve § EV techniques that do not reflect actual performance The Project Train Wrecks Starts When There is… Mary K. Evans Picture Library 14
  • 15. PUTTING THESE PRINCIPLES INTO PRACTICE Principles are not the same as Practice 15
  • 16. Principles and Practices are not the same In theory there is no difference between theory and practice. In practice there is. 16
  • 17. Three Conditions of Risk ¨ The potential for loss must exist. ¨ Uncertainty with respect to the eventual outcome must be present. ¨ Some choice or decision is required to deal with the uncertainty and potential for loss. 17
  • 18. Mission-Oriented Success Analysis and Improvement Criteria (MOSAIC) ¨ Establish and maintain confidence that objectives will be achieved successfully ¨ A suite of risk–based methods for assessing and managing complex projects and processes. ¨ Produces a broad overview of the current state of risk and opportunity for a project or process. 18
  • 19. Mission Work Processes Constraints Tasking, Orders, and Plans Operational Processes Resources § Stability § Completeness § Clarity § Validity § Feasibility § Precedent § Timeliness § Formality § Suitability § Process Control § Familiarity § Product Control § Schedule § Staff § Budget § Facilities § Tools Mission Execution Maintenance Process Policies § Efficiency § Effectiveness § Complexity § Timeliness § Safety § Formality § Suitability § Process Control § Familiarity § Service Quality § Laws and Regulations § Restrictions § Contractual Constraints Product and Service Management Processes Interfaces § Usability § Effectiveness § Timeliness § Accuracy § Correctness § Operational Systems § Planning § Organization § Management Experience § Program Interfaces § Customer / User Community § Associate Agencies § Contractors § Senior Leadership § Vendors § Politics Operational Systems Management Methods § Throughput § Suitability § Usability § Familiarity § Reliability § Security § Inventory § Installations § System Support § Monitoring § Personnel Management § Quality Assurance § Configuration Management Work Environment § Quality Attitude § Cooperation § Communication § Morale 19
  • 20. AN INTRODUCTION TO CONTINUOUS RISK MANAGEMENT (CRM) CRM is the Software Engineering Institute’s framework for managing risk in the context of system integration, COTS based product development, and the management of these activities. 20
  • 22. Continuous Risk Management Stage Actionable Steps Identify Continually ask, “what could go wrong?” Analyze Continually ask, “which risks are most critical to mitigate?” Plan Develop mitigation approaches for the most critical risks Track Track the mitigation plan and the risk Control Make decisions based on data Communicate Ensure a free-flow of information throughout the project 22
  • 23. Putting Continuous Risk Management Together Identify Analyze Plan Track Control Identify Risk Issues and Concerns Evaluate, classify, and prioritize risks Decide what should be done about risks Monitor risk metrics and verify/validate mitigations Make risk decisions Subproject and partner data/constraints, hazard analysis, FMEA, FTA, etc. Risk data: test data, expert opinion, hazard analysis, FMEA, FTA, lessons learned, technical analysis Resources Replan Mitigation Program/project data (metrics information) Statement of risk Risk classification, Likelihood Consequence, Timeframe Risk prioritization Research, Watch (tracking requirements) Acceptance Rationale, Mitigation Plans Risk status reports on: Risks Risk Mitigation Plans Close or Accept Risks Invoke contingency plans Continue to track 23
  • 24. Four (4) Steps to Deploying CRM Step Action 1 Establish an enterprise risk management process SEI CRM Process with Mitre Risk Registry is a start 2 Establish Risk Process owner and document the process Org chart Risk Manager established, Risk owners for deliverables are next 3 Provide training in the standard risk management process Engage risk owners 4 Monitor and enforce the implementation of Risk Management Weekly risk board meeting 24
  • 25. Search for and locate risks before they become issues or problems. Capture statements of risk and context. 25
  • 26. Capture a Statement of Risk ¨ Consider and record the conditions that are causing concern ¨ Create a statement of the risk in a concise description, which can be understood and acted on ¤ Condition: a single phrase describing the circumstances ¤ Consequences: a single phrase describing the key, possible negative outcome(s) 26
  • 27. Capture the Context of a Risk ¨ A brief, concise description of the conditions and consequences of the risk ¨ Provide enough information to ensure the original intent of the risk can be understood, especially after some time has passed 27
  • 28. Transform risk data into decision making information. Risk analysis is performed to determine what is important to the project and to set priorities. 28
  • 29. Evaluating Attributes of Risks ¨ Impact: the loss or effect on the project if the risk occurs ¨ Probability: the likelihood the risk will occur ¨ Timeframe: the period when action is required in order to mitigate or retire the risk 29
  • 30. Sample Risk Evaluation A B C D E Negligible Minor Moderate Significant Severe E Very Likely Low Med Medium Med Hi High High D Likely Low Low Med Medium Med Hi High C Possible Low Low Med Medium Med Hi Med Hi B Unlikely Low Low Med Low Med Medium Med Hi A Very Unlikely Low Low Low Med Medium Medium 30
  • 31. Classifying Risks ¨ Grouping risks based on shared characteristics ¨ Identify duplicate risks 31
  • 32. Risk Evaluation Classification Probability Risk Rating > 70% E: Very Likely 40% to 70% D: Likely 10% to 40% C: Possible 1% to 40% B: Unlikely < 1% A: Very Unlikely Budget Over Run Impact Rating > 15% of budget E: Severe 10% to 15% of budget D: Significant 6% to 10% of budget C: Moderate 2% to 6% of budget B: Minor < 2% of budget A: Negligible 32
  • 33. Prioritizing Risks ¨ Partitioning risks or groups of risks based on the Borda “vital few” scale ¨ Ranking the risks based on a criteria ¨ Separate risk to be dealt with first (the vital few) when allocating resources 33
  • 34. The Borda Rank ¨ Which risk of more critical? ¨ Where should resources be allocated to eliminate the most troublesome areas in the program? ¨ Using this approach – ties for “the most important – often result. ¨ Borda Ranking deals with this result, which ranks risks according to their probability of occurrence and their impact ( ) i ik k b N r = - å “Risk Matrix: An Approach for Identifying, Assessing, and Ranking Program Risks,” Paul Garvey and Zachary Lansdowne, Air Force of Logistics, Vol XXII, Number 1 34
  • 35. Translate risk information into decisions and mitigating actions and implement those actions. Produce plans for mitigating risks. 35
  • 36. Assign Responsibility ¨ Three choices for assigning responsibility ¤ Keep the risk ¤ Transfer the risk upward in the organization or to another organization ¤ Delegate the risk within the organization 36
  • 37. Determine the Approach ¨ Accept the risk – do nothing ¨ Mitigate the risk – eliminate or reduce ¨ Watch the risk – monitor for critical changes 37
  • 38. Define Scope and Actions ¨ Action Item List for less complex mitigations ¤ A simple means of documenting and tracking risk mitigations ¨ Task Plans with schedules and budgets for complex mitigations ¤ These plans must be embedded in the Integrated Master Schedule 38
  • 39. Monitor risk indicators and mitigation plans. Indicators and trends provide information to activate plans and contingencies. Review these plans periodically to measure progress and identify new risks. 39
  • 41. Integrate Risk with the Master Schedule ¨ Budget and resources assigned from Risk Management reserve ¨ Activation of risk activities through the Risk Management Board ¨ Adjustments to Performance Measurement Baseline reflect Risk activities ¨ Measure risk activities in the same way as other planned activities 41
  • 42. Correct for deviations from the risk mitigation plans. Actions can lead to corrections in products or processes. Changes to risks, risks that become problems, or faulty plans require adjustments in plans or actions. 42
  • 43. Analyze Risks ¨ Examine risks for trends, deviations, and anomalies ¨ Achieve a clear understanding of the current status of each risk and mitigation plan 43
  • 44. Decide ¨ Replan ¨ Close the risk ¨ Invoke the contingency plan ¨ Continue tracking and executing the current plan 44
  • 45. Execute ¨ If a planned action is made, open the Work Packages for the mitigation or retirement activities ¨ If it decided to continue tracking, the risk remains in the tracking state until the next review 45
  • 46. Provide information and feedback to the project on the risk activities, current risks, and emerging risks. 46
  • 47. Risk Communication Process Risk Management Processes and their Communication to the Program Team Determine sources and categories Define parameters to analyze and categorize risks Define parameters used to control the risk management effort Establish and maintain a strategy for risk management Identify and document risks Evaluate and categorize each identified risk using defined categories and parameters and determine relative priority Develop risk Handling Plan for important risks as defined by the risk management strategy Monitor status of risk periodically and implement risk handling plan as appropriate Establish and maintain organizational policy for planning and performing risk management Provide adequate resources for performing risk management, developing work products and providing services Assign responsibility and authority for performing the process Train staff in support of risk management processes Place designated work products under appropriate configuration management Identify and involve relevant stakeholders Monitor and control risk management processes Objectively evaluate adherence to risk management processes 47
  • 48. Risk Management and the IMS 48
  • 49. Linking Risks with the IMS 49 The situation What to do Risk identified during the program planning phase (IMP) § Place risk mitigation tasks into IMS and allocate resources § Do not duplicate risk mitigation tasks in risk database Risk threat to a task in the IMS § Enter risk mitigation actions into risk database Existing risk growing beyond the current scope of a team but within the scope of the program § Allocate management reserves § Place risk mitigation actions in risk database New risk beyond the current scope of the program § Obtain additional resources § Develop plan and allocate resources § Place risk mitigation tasks in IMS
  • 50. 50