You are here: Home Blogs Risk Management – the PM’s Best Friend
Monday, 02 May 2011 15:57

Risk Management – the PM’s Best Friend

Written by  By Gareth Byatt, Gary Hamilton, and Jeff Hodgkinson
Rate this item
(5 votes)
Here’s a question for you to quickly consider: effective risk management underpins a successful project – true or false?

Was “true” your first reaction? We believe that you’re right. All three of us are strong believers in the positive value of a well-managed and controlled approach to project risks. An Internet search for “images of risk management” will return many illustrations of dice being rolled. If it is done well, risk management measures the uncertainty involved when you “roll the dice” during your project, and allows the Project Manager to obtain a consensus on how to best handle risks and unexpected events on the project.


This article does not cover in detail the processes necessary for effective project risk management. A large amount of material and advice exists on the subject. Rather, we put forward just a few “pointers to consider” for your project – whether it is already underway or getting ready to start. 

Take-Away points to consider

We put forward the following considerations for risk management (this list is not exhaustive or prioritised):

  1. Risk management affects all aspects of your project – your budget, your schedule, your scope, the agreed level of quality, your communications and stakeholder engagement, the success when the project’s output is implemented, and so on.

  2. Risks can be positive (i.e. opportunities), as well as negative (generally referred to as risks).

  3. Risk management is about behaviours that prove that risk management is a top priority for you and the team, such as “being constantly aware of what might happen,” agreeing on strategies for all risks, and undertaking actions to prevent negative risks from becoming issues (i.e. occurred events) whilst maximising the opportunities of positive risks.

  4. Risk management needs to be conducted from the start of the project, constantly discussed and monitored, and involve all members of the project team.

  5. How you choose to handle risks depends on your most influential project stakeholders’ “appetite for risk.”

  6. Each identified risk needs to be assessed, a strategy for dealing with it agreed upon by all appropriate parties, and tracked until closure.

  7. Project risk management is not “the Project Manager tracking risks in a Risks Register and sharing it occasionally when or if people ask to see it” – it is much more than that.


The essentials of project risk management

A project risk can be defined as an uncertain event or condition that, if it occurs, will have a positive or a negative effect on a project’s objectives. Some very comprehensive guidelines and procedures for managing risk are available from many sources. For example, the Project Management Institute describes the following summary process to managing project risks:

  1. Plan risk management.

  2. Identify risks.

  3. Perform qualitative risk analysis.

  4. Perform quantitative risk analysis.

  5. Plan risk responses.

  6. Monitor and control risks.


You may come across other models. Your means of conducting risk management and the behaviours you and your team display in “making it real” make all the difference. We have mentioned “behaviours” a few times in this article. We are referring to the communication (in all its shapes and forms) that you use, the importance with which you treat risks, and the willingness and drive to see actions through to completion and closure.

Here are a few questions for you to ask yourself:

  1. At the start of a project, do you plan how you and the team will approach risks? By this, we do not mean jumping straight to a Risks Register, but putting some serious thought into how risks will be managed during the project.

  2. Do you understand and monitor the appetite for risk of your customer and influential stakeholders?

  3. Do you involve all people in the team to identify project risks – not only at the start, but throughout the project?

  4. Do you review the risks of previous projects, and look to lessons from the past as part of your initial review and identification process?

  5. Do you strive to ensure each risk has an owner, and that the method to tackle them is agreed upon, i.e., whether to mitigate the risk with an action, to transfer, avoid or accept it and so on?

  6. Do you readily assess opportunities as well as negative risks, and devise strategies to maximise the likelihood of opportunities occurring in order to exploit or enhance them?

  7. Do you assess “triggers” to each risk so that you can monitor if/when there is danger of their becoming real?

  8. As well as qualitative assessment of risks, are you able to apply a quantitative financial or time value to each risk, both negative and positive, should it eventuate? If the impact is negative, will it turn into an issue? Can this estimated financial value help you justify an appropriate project contingency in terms of cost and/or time?

  9. Are you pro-active in tracking the agreed strategies to handle risks?

  10. Do you maintain a project Risks Register on a regular basis – moving priorities up and down the list, watching for low-priority risks that may escalate in importance, being attentive to risks that are likely to occur soon?

  11. Do you discuss the “current high-priority risks” with your key Stakeholders at each project review (in whatever forum you have for such review meetings)?

  12. Do you discuss what will happen if major and problematic “unknown unknowns” occur on your project, perhaps with action scenarios if such events happen?


Remember: risk management is your friend and ally

As per the title of this article, risk management is the project manager’s friend. Done well, it helps you ensure that the “appetite for risk” is appropriately understood at the start; that all risks are agreed upon, prioritised, assessed, communicated and understood in alignment with this “risk appetite;” and that you have a solid platform to track agreed actions, including escalation up the management chain if necessary. The key is to demonstrate positive behaviours in a way that ensures risk management is kept at the forefront of all your project activities. There is always the potential of “unknown unknowns” impacting your project, but the more you can assess reasonable risks from the start of the project and actively manage them throughout, the better placed you will be as a team to realise a positive outcome for your project.

If you have an opinion on this article, we would really like to hear from you.. Please email us at with your point of view.


Gareth Byatt is Head of the IT Global Program Management Office for Lend Lease Corporation. Gareth has worked in several countries and lives in Sydney, Australia. Gareth has 14+ years of project and program management experience in IT and construction. He can be contacted through LinkedIn.

Gareth holds numerous degrees, certifications, and credentials in program and project management as follows: an MBA from one of the world"s leading education establishments, a 1st-class undergraduate management degree, and the PMP , PgMP , PMI-RMP , & PRINCE2 professional certifications. Gareth is also the APAC Region Director for the PMI"s PMOSIG and chairs several peer networking groups.

He has presented on PMO, program and project management at international conferences in the UK, Australia, & Asia including PMI APAC in 2010.


Gary Hamilton is the Manager of the PMO and Governance within Bank of America"s Learning and Leadership Development Products organization. Gary lives in Bristol, Tennessee, USA and works out of Charlotte, North Carolina. He has 14+ years of project and program management experience in IT, finance, and human resources. Gary has won several internal awards for results achieved from projects and programs he managed as well as being named one of the Business Journal"s Top 40 Professionals in 2007. He can be contacted through LinkedIn.

Gary holds numerous degrees and certifications in IT, management, and project management and they include: an advanced MBA degree in finance, and has the PgMP , PMP , PMI-RMP , ITIL-F, and SSGB professional certifications.

Gary also is a 2009 Presidents" Volunteer Award recipient for his charitable work with local fire services and professional groups.


2010-PMI_AwardMedallion.ashxJeff Hodgkinson is a 30+ year veteran of Intel Corporation, where he continues on a progressive career as a program/project manager. Jeff received the 2010 PMI Distinguished Contribution Award for his support of the Project Management profession from the Project Management Institute. Jeff was also the 2nd place finalist for the 2009 Kerzner International Project Manager of the Year Award TM. He lives in Mesa, Arizona, USA and volunteers as the Associate Vice President for Credentials & Certifications for the Phoenix PMI Chapter. Because of his contributions to helping people achieve their goals, he is the third (3rd) most recommended person on LinkedIn, and is in the Top 100 (81st) most networked. Jeff holds numerous certifications and credentials in program and project management, which are as follows: CCS, CDT, CPC‚ CIPM‚ CPPM-Level 10, CDRP, CSQE, IPMA-B , ITIL-F, MPM‚ PME‚ PMOC, PMP , PgMP , PMI-RMP , PMW, and SSGB (Six Sigma Green Belt). He is an expert at program and project management principles and best practices and enjoys sharing his experiences with audiences around the globe.

Read 27584 times Last modified on Monday, 02 May 2011 16:00
Login to post comments

News and Promotions

Keep up to date with the latest happenings by signing up for our newsletter. Subscribe below.

Twitter Update

Parse error: syntax error, unexpected end of file in /home/spektmedia/public_html/wp-content/plugins/ccode.php on line 82

Who's Online

We have 578 guests and no members online

Got something to say?