CS 495: IT Project Management - Risk Management

Questions and Answers

What type of risks are identified through historical data and hazard logs?

• Prospective risks
• Retrospective risks (correct)
• Generic risks
• Product-specific risks

What is the primary goal of the risk identification step in the risk management process?

• To analyze the likelihood of a risk
• To monitor the level of risk
• To implement a risk management plan
• To identify possible risks that may affect the business (correct)

What is the formula to calculate the level of risk?

• Level of Risk = Likelihood / Consequence
• Level of Risk = Consequence / Likelihood
• Level of Risk = Consequence x Likelihood (correct)
• Level of Risk = Likelihood - Consequence

What is the purpose of the risk analysis step in the risk management process?

To analyze the likelihood and consequences of a risk (B)

What is the outcome of the risk analysis step?

A level of risk defined by consequence and likelihood (D)

What is the purpose of the four risk projection activities?

To establish a scale to reflect the perceived likelihood of each risk (C)

What is the difference between qualitative and quantitative analysis?

Qualitative analysis is more subjective, while quantitative analysis is more objective (C)

What is the purpose of brainstorming in risk identification?

To identify possible risks (D)

What is the purpose of reviewing system design in risk identification?

To identify possible risks (A)

What is the relationship between impact and likelihood in risk analysis?

High impact and high likelihood result in a high level of risk (B)

What is the primary objective of a proactive risk strategy?

To avoid risks from happening (D)

What type of risk strategy is characterized by taking action only after something goes wrong?

Reactive strategy (A)

What is an example of a technical risk?

Risk in design implementation (A)

What is the purpose of a risk management plan?

To evaluate and manage risks regularly (D)

What type of risk is related to delays in scheduling and increases in cost?

Project risk (D)

What is crisis management involved in?

Taking action after something goes wrong (C)

What is the estimated probability of failure in the given risk scenario?

25% (B)

What is the total cost if the risk occurs?

30,000 Birr (A)

What is the purpose of risk evaluation in the risk management process?

To compare risks with established risk criteria (A)

What is the result of a risk evaluation?

A prioritized list of risks that require further action (B)

What is an accepted risk?

A risk that doesn't require treatment (B)

What is the risk exposure in the given scenario?

7,500 Birr (C)

What is risk in the context of IT project management?

The possibility of beneficial and/or harmful outcomes and their likelihood of occurrence in a stated time-scale (A)

What is the main objective of project risk management?

To identify and respond to risks in the best interests of meeting project objectives (A)

What are risks in the context of IT project management?

Potential problems that may affect a project's completion and involve uncertainty and potential losses (B)

What is involved in project risk management?

Identifying, analyzing, and responding to risks throughout the life of a project (D)

Why is project risk management important?

Because it helps to ensure that projects are completed successfully (A)

What is the primary goal of risk treatment?

To reduce or eliminate negative consequences (A)

Why might a risk be accepted?

Because the cost of treatment far exceeds the benefit (C)

What is the main difference between 'Avoid' and 'Reduce' risk treatments?

Avoid eliminates the risk, while Reduce decreases the quantum of losses (C)

What is the purpose of the Risk Management Process?

To treat risks that were not considered acceptable (D)

What is the main goal of the 'Transfer' risk treatment option?

Not mentioned in the text (D)

How many options for risk treatment are mentioned in the text?

8 (A)