Welcome to this crowd-sourced risk register!
Over time, we will end up collecting a rich list of risks that have been identified in many different initiatives and some ideas as to the possible responses and their effectiveness. Caveat emptor: the data is only as good as what is entered.
If you’d like to add your experience, please do. The more data points there are, the more useful the database becomes.
Click here to go to the data entry page
Here’s the database. For reasons of space, it is set up in the planning view (what risks were identified). You can sort it, and you can search for particular words. If you want to see the full record of a risk event (minus identifying data fields), click the link. Choose that link also if you want to edit the record (only the person who entered it, or the site admins, can edit it).
| Project source | Industry | Initiative Size | Risk Category | Risk Event | Percent cost loading | Pct schedule loading | Response Selected | Planned Response | Risk Monitoring | Risk Occurred ? |
|---|---|---|---|---|---|---|---|---|---|---|
| SSC-12 | IT (Information Technology solutions) | $500,001 to $2 million | Approved funds may be reduced or delayed | We may lose funding in budget cuts | 0 | 0 | Accept by default - risk or response was not considered | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-12 | IT (Information Technology solutions) | $500,001 to $2 million | Market shifts may cause supplier price increases | Exchange rates may shift | 0 | 0 | Accept as an intentional choice | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-11 | IT (Information Technology solutions) | $2 million to $10 million | Requirements may change after the work starts | Upper management may decide on a strategic change | 0 | 0 | Accept by default - risk or response was not considered | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-10 | IT (Information Technology solutions) | $2 million to $10 million | Solution cannot integrate with other enterprise systems or processes | Solution may be incompatible with IT network standards | 0 | 0 | Accept by default - risk or response was not considered | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-10 | IT (Information Technology solutions) | $2 million to $10 million | The delivery team may not really know how to do this | Supplier may be unable to deliver the technical solution | 0 | 0 | Accept by default - risk or response was not considered | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-10 | IT (Information Technology solutions) | $500,001 to $2 million | The solution may run into security issues | The system might be attacked by hackers | 0 | 0 | Mitigate | System will undergo IT Security review and C&A. This may reduce much of the risk but is unlikely to eliminate it altogether. | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-11 | IT (Information Technology solutions) | $2 million to $10 million | The solution may run into security issues | The solution may not be able to meet IT Security standards | 0 | 0 | Accept as an intentional choice | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-10 | IT (Information Technology solutions) | $2 million to $10 million | We may not have the proper skill-sets on hand at the proper time | Resources may not be available when needed | 0 | 0 | Accept as an intentional choice | No response actions were planned | There was no monitoring plan | TBD (initiative not completed yet) |
| SSC-12 | IT (Information Technology solutions) | $500,001 to $2 million | We may not have the proper skill-sets on hand at the proper time | We may be unable to get SMEs to participate effectively | 0 | 0 | Mitigate | Include SMEs as scheduled resources and coordinately closely with resource managers | Meet with resource managers to check SME schedule and availability at least 2x monthly | TBD (initiative not completed yet) |
| SSC-12 | IT (Information Technology solutions) | $500,001 to $2 million | We may not have the proper skill-sets on hand at the proper time | Critical SME may depart the company | 0 | 0 | Accept as an intentional choice | No response actions were planned | There was no monitoring plan | No |
| Project source | Industry | Initiative Size | Risk Category | Risk Event | Percent cost loading | Pct schedule loading | Response Selected | Planned Response | Risk Monitoring | Risk Occurred ? |