Risk Management

Risk identification allows for identification of risks so that the stakeholders become aware of potential problems and make appropriate decisions. Risk identification should be undertaken as early as possible and should be repeated frequently. 

Risk analysis transforms and quantifies the estimates or data about specific risks that developed during risk identification into a consistent form that can be used to make decisions around prioritization. Risk prioritization enables operations to commit resources to manage the most important risks. 

Risk planning takes the information obtained from risk analysis and uses it to formulate strategies, plans, change requests, and actions. Risk scheduling ensures that these plans are approved and then incorporated into the standard day-to-day processes and infrastructure.

Risk tracking is a major part of any project. It is used to monitor the status of specific risks and the progress in their respective action plans. Risk tracking also includes monitoring the probability, impact, exposure, etc for changes that could alter priority or risk plans and ultimately the availability of the service. Risk reporting ensures that all the stakeholders are aware of the status of top risks and the plans to manage them

Risk control is the process of executing risk action plans and their associated status reporting. Risk control also includes initiating change control requests when changes in risk status or risk plans could affect the availability of the service or service level agreement (SLA). 

Risk learning documents the lessons learned and use tools to capture, categorize, and index that knowledge in a reusable form that can be shared with others.