Podcast
Questions and Answers
Qual das seguintes estratégias de resposta a riscos NÃO representa uma abordagem direta para minimizar o impacto de um risco negativo?
Qual das seguintes estratégias de resposta a riscos NÃO representa uma abordagem direta para minimizar o impacto de um risco negativo?
Qual das seguintes normas ISO se concentra especificamente na gestão de riscos de segurança da informação?
Qual das seguintes normas ISO se concentra especificamente na gestão de riscos de segurança da informação?
Uma matriz de risco é uma ferramenta fundamental no processo de avaliação de risco. Qual das seguintes afirmações descreve melhor a função da matriz de risco?
Uma matriz de risco é uma ferramenta fundamental no processo de avaliação de risco. Qual das seguintes afirmações descreve melhor a função da matriz de risco?
A estratégia de resposta a riscos conhecida como "aceitação de riscos" geralmente implica em qual das seguintes ações?
A estratégia de resposta a riscos conhecida como "aceitação de riscos" geralmente implica em qual das seguintes ações?
Signup and view all the answers
Em termos de gestão de riscos, a diferença fundamental entre a "evitação de riscos" e a "minimização de riscos" é que:
Em termos de gestão de riscos, a diferença fundamental entre a "evitação de riscos" e a "minimização de riscos" é que:
Signup and view all the answers
O termo "contingência" no contexto da gestão de riscos refere-se a:
O termo "contingência" no contexto da gestão de riscos refere-se a:
Signup and view all the answers
Qual das seguintes afirmações é verdadeira sobre a ISO 27000 series?
Qual das seguintes afirmações é verdadeira sobre a ISO 27000 series?
Signup and view all the answers
A matriz de risco, como ferramenta de avaliação de riscos, é normalmente usada para:
A matriz de risco, como ferramenta de avaliação de riscos, é normalmente usada para:
Signup and view all the answers
Qual das seguintes situações NÃO é uma razão para a adoção de uma estratégia de "aceitação de riscos"?
Qual das seguintes situações NÃO é uma razão para a adoção de uma estratégia de "aceitação de riscos"?
Signup and view all the answers
Qual é o principal objetivo do gerenciamento de custos em projetos de TI?
Qual é o principal objetivo do gerenciamento de custos em projetos de TI?
Signup and view all the answers
Quais elementos estão incluídos nos processos de gerenciamento de custos?
Quais elementos estão incluídos nos processos de gerenciamento de custos?
Signup and view all the answers
Qual é a principal razão para o gerenciamento de custos em projetos de TI ser considerado desafiador?
Qual é a principal razão para o gerenciamento de custos em projetos de TI ser considerado desafiador?
Signup and view all the answers
O que abrange o planejamento de gerenciamento de custos?
O que abrange o planejamento de gerenciamento de custos?
Signup and view all the answers
Quais são os benefícios do gerenciamento de valor agregado em projetos?
Quais são os benefícios do gerenciamento de valor agregado em projetos?
Signup and view all the answers
Como o software de gerenciamento de projetos pode auxiliar no gerenciamento de custos?
Como o software de gerenciamento de projetos pode auxiliar no gerenciamento de custos?
Signup and view all the answers
Quais são os métodos utilizados para elaboração de estimativas de custos?
Quais são os métodos utilizados para elaboração de estimativas de custos?
Signup and view all the answers
Qual é a principal função da análise de fluxo de caixa em projetos?
Qual é a principal função da análise de fluxo de caixa em projetos?
Signup and view all the answers
Como as reservas de gestão são definidas no contexto de gerenciamento de custos?
Como as reservas de gestão são definidas no contexto de gerenciamento de custos?
Signup and view all the answers
Qual técnica de estimativa de custo utiliza os custos reais de um projeto anterior semelhante?
Qual técnica de estimativa de custo utiliza os custos reais de um projeto anterior semelhante?
Signup and view all the answers
O que é um plano de gerenciamento de riscos?
O que é um plano de gerenciamento de riscos?
Signup and view all the answers
Qual das seguintes opções não é considerada um custo direto em um projeto?
Qual das seguintes opções não é considerada um custo direto em um projeto?
Signup and view all the answers
Qual é o principal objetivo do gerenciamento de custos dentro de um projeto?
Qual é o principal objetivo do gerenciamento de custos dentro de um projeto?
Signup and view all the answers
O que caracteriza os custos tangíveis em um projeto?
O que caracteriza os custos tangíveis em um projeto?
Signup and view all the answers
Qual afirmação sobre a curva de aprendizado é verdadeira?
Qual afirmação sobre a curva de aprendizado é verdadeira?
Signup and view all the answers
Qual é a principal vantagem do uso de um registro de riscos?
Qual é a principal vantagem do uso de um registro de riscos?
Signup and view all the answers
Study Notes
Mod 4: Project Cost & Risk Management
- This module covers project cost and risk management in 2024/25.
- The teaching team is Gabriel Pestana and Nuno Pina.
- Classes include Project Cost Management (Class 06) and Project Risk Management (Class 07).
Project Cost Management - Learning Objectives
- Understanding the importance of project cost management.
- Explaining basic project cost management principles, concepts, and terms.
- Describing the process of planning cost management.
- Discussing different types of cost estimates and methods for preparing them.
- Understanding how to determine a budget and prepare a cost estimate for an IT project.
- Recognizing the benefits of earned value management and project portfolio management in cost control.
- Describing how project management software assists in project cost management.
The Importance of Project Cost Management
- IT projects often face difficulties meeting budget goals.
- Project cost management ensures projects are completed within the approved budget.
- Costs are typically measured in monetary units like dollars or euros.
Project Cost Management Processes
- Planning Cost Management: establishing policies, procedures, and documentation for planning, execution, and control of project costs.
- Estimating Costs: creating an approximation of the resources required and the cost required to complete the project.
- Determining the Budget: allocating the estimated cost to individual work items, creating a baseline for performance measurement.
- Controlling Costs: managing changes to the project budget.
Basic Principles of Cost Management
- Project managers should use financial terms when communicating with executive boards.
- Profit is calculated by subtracting expenditures from revenues.
- Profit margin is the ratio of revenue to profit.
- Life cycle costing considers the total cost of ownership (development and support).
- Cash flow analysis estimates annual costs and benefits and the resulting annual cash flow.
Types of Costs and Benefits
- Tangible costs/benefits are easily measured in dollars.
- Intangible costs/benefits are difficult to measure in monetary terms.
- Direct costs are directly related to product/service creation.
- Indirect costs are not directly related to the product/service.
- Learning curve theory demonstrates decreasing unit costs with increased production.
- Reserves are included in cost estimates to address unforeseen future situations.
Planning Cost Management
- Project teams use expert judgment, analytical techniques, and meetings to develop cost management plans.
- Project managers must seriously consider cost estimates to stay within the budget.
- Understanding the types of cost estimates, preparation, and problems (typical IT issues) is important.
Types of Cost Estimates
- Cost estimates should become more accurate as a project progresses.
- Labor costs often represent a large portion of project costs.
- Analogous/top-down estimates utilize the actual cost of a similar previous project.
- Bottom-up estimates involve estimating individual activities and totaling the cost.
- Parametric modeling leverages project characteristics to estimate costs mathematically.
Cost Estimates - Components (labor cost rates)
- Examples are given to help students understand fundamental concepts.
- Labor, base wage, social insurance, employee insurance, overhead costs, and other costs are assessed.
Cost Estimates - Components (other costs)
- Materials, equipment, facilities, subcontractors, travel, administrative costs, and management are examples of extra project costs.
Cost Estimates - Components (Management)
- Project management costs (personnel) are considered.
- Taxes (VAT), inflation, finance costs, and contingencies are examples of additional costs.
Project Cost Estimate - Example
- Specific examples of cost estimates are provided.
- Different project components are listed with individual costs.
- The example shows percentage breakdowns for different cost types..
Determining the Budget
- Cost budgeting involves allocating estimated project costs to individual work items over time.
- Budgeting determines when and where costs will be incurred, based on deliverables and milestones.
- The WBS is a critical input for cost budgeting because it defines the work items.
- A cost baseline is a time-phased budget allowing cost measurement and monitoring.
Project Cost Baseline
- This section displays an example of a project baseline.
- Individual project elements, such as project managers and hardware, are listed with their respective costs.
- The table depicts estimated costs across different periods/categories
Cash Flow
- This section includes a table outlining cash flow projections over different project phases (months M1-M6).
- The table shows estimated resource costs, traveling costs, material costs, and the total.
- It is a good example of how project costs can be estimated for different phases.
Chapter Summary
- Project cost management can be a challenging area for IT projects; managers should work to improve budget delivery.
- Main cost management processes include planning, estimating, determining, and controlling costs.
Project Cost Management Summary
- Planning, monitoring, and controlling project costs include processes such as cost estimation, creating cost baselines, and tracking costs.
Project Risk Management
- This section introduces project risk management.
- The goal is to manage potential challenges in IT projects to ensure success.
Project Risk Management - Learning Objectives
- Understanding risk and the importance of project risk management
- Discussing risk management planning and the contents of a risk management plan.
- Recognizing common sources of risk in IT projects
- Understanding risk identification and how to create a risk register
- Discussing qualitative and quantitative risk analysis and how to calculate risk factors
- Learning about risk monitoring and control
- Explaining differences among metrics, KPIs and CSFs.
The Importance of Project Risk Management
- The necessity of adapting to unforeseen circumstances within project management is highlighted.
- Murphy's Law is used as a key concept to address project risk.
Type of Risks
- Negative risks involve losses or injuries that hinder a project's success.
- Negative risk management is similar to insurance as it's an investment.
- Positive risks are opportunities for something good to happen; they are also called opportunities.
Risk Utility
- Risk utility or risk tolerance represents the level of satisfaction from potential gains.
- Risk-averse individuals have a lower tolerance for risk.
- Risk-seeking individuals have a higher tolerance for risk.
- A risk-neutral approach balances risk and payoffs.
Project Risk Management Processes
- Planning risk management: determining how to approach and manage project risks.
- Identifying risks: documenting potential risks.
- Qualitative risk analysis: prioritizing risks.
- Quantitative risk analysis: numerically estimating the effects of risks on project objectives.
- Planning risk responses: reducing risks or enhancing opportunities.
- Monitoring and controlling risks: evaluating the effectiveness of risk strategies throughout the project lifespan.
Risk Management Planning
- The key output of planning is a risk management plan.
- The project team needs to review project documents to understand risk management.
- Detail in the plan will vary depending on project needs.
- Common topics in risk management plans include methodology, responsibilities, budget, schedule, risk categories, risk probability & impact (and potential risk matrices), and risk documentation.
Risk Management Planning
- Identifying and assessing risks, their potential severity.
- Determining means of assessment and their mitigation strategies.
Contingency and Fallback Plans
- Contingency plans are actions taken in the event of specific identified risk factors.
- Fallback plans are put in place if risk mitigation attempts are unsuccessful.
- Contingency reserves help control project cost or schedule overruns.
Broad Categories of Risk & Risk Identification
- Key categories of risk and risk identification are presented, including Market risk, Financial risk, Technology risk, People risk, and Structure/Process risk.
Identifying Risks
- A process of recognizing potential events or conditions impacting a project.
- Brainstorming, Delphi, and SWOT analysis are methods employed for risk identification.
Risk Identification
- Brainstorms are utilized to generate ideas relating to possible project risks.
- Delphi helps experts independently predict future events (without bias).
- Interviewing helps collect risk-related information from people with experience.
- SWOT analysis examines project strengths, weaknesses, opportunities, and threats.
SWOT Analysis
- Strengths and weaknesses are internal project factors.
- Opportunities and threats are external factors.
Risk Register
- The output of risk identification is a list of identified risks and related info.
- The register is usually in a table/spreadsheet format.
- The table includes risk identification numbers, ranks, names (with SMART terminology), descriptions, categories, root causes, triggers, potential responses, risk owners, probability, impact, and status.
Combining the Impact of Several Risks
- Individual risks often interact within a project.
- Using the WBS, risks are identified at the higher or lower levels.
- Contingency plans can be prepared to mitigate potential risk interactions.
- Treatment and risk mitigation methods are used.
Risk Register Contents
- Standard risk register attributes include the risk ID, rating, category, description, root cause, risk triggers, owner, possible response, probability, impact, and risk status.
General Risk Mitigation Strategies
- Recommendations include better team management, leadership, and monitoring.
- Defining the WBS is critical for effective risk mitigation.
Planning Risk Responses
- After identifying risks, response strategies (treatment) are devised.
- Risk avoidance means avoiding the risk completely.
- Risk acceptance involves creating contingency plans if the risk occurs.
- Risk transfer involves shifting risk to another party (like insurance).
- Risk mitigation involves reducing the risk's probability or impact.
Planning Risk Responses (Risk Treatment Process)
- Four risk response strategies are outlined, with detailed explanations on each approach.
Risk Assessment
- Risk assessment is a process to measure risks based on parameters like consequences and probability.
- Risk impact values are calculated, which combine the probability of a risk occurring and its potential consequence.
Risk Impact Table
- A table is provided with examples of risks, their assigned probability, consequences, and resulting risk impact values.
- This allows prioritization of risk management efforts.
Risk Impact Matrix
- This matrix allows a graphical depiction of the risk impact based on probabilities and consequences.
Risk Acceptance - Contingency and Allowance Cost Estimation
- This section further explains risk acceptance concepts, including estimating additional costs to deal with identified risks.
Risk Management - ISO/IEC 27000 Series
- ISO/IEC 27000 series provides best practice recommendations for information security risk management.
- The series covers topics such as vocabulary, requirements, code of practice, implementation guidelines, measurement & metrics, and risk management.
Risk Management - ISO 27005 Generic Process
- A graphical depiction of the stages in the ISO 27005 risk management process..
Risk Assessment - Risk Matrix and Impact Level
- This presentation outlines the risk matrix, focusing on ISO 27005 recommendations.
Build the Risk Matrix
- This section describes the Risk Matrix building process and graphically shows how to use it to determine the risk level.
ISO 27005 Generic Process
- This section describes different risk categories (Broadly Acceptable - GA; ALARP; Generally Unacceptable - GU).
Project Risk Management Summary
- Provides a summary of planning and control processes in project risk management.
Additional Information
- Contact information for the professor and respective institution, along with the date.
Studying That Suits You
Use AI to generate personalized quizzes and flashcards to suit your learning preferences.
Related Documents
Description
Teste seus conhecimentos sobre estratégias de resposta a riscos e normas ISO relacionadas à segurança da informação. Este quiz aborda a matriz de risco, a aceitação de riscos e a série ISO 27000. Verifique como você se sai em relação a conceitos fundamentais da gestão de riscos!