Risk identification is a process for identifying and recording potential project risks that can affect the project delivery. This step is crucial for efficient risk management throughout the project. The outputs of the risk identification are used as an input for risk analysis, and they reduce a project manager’s uncertainty. It is an iterative process that needs to be continuously repeated throughout the duration of a project. The process needs to be rigorous to make sure that all possible risks are identified.
An effective risk identification process should include the following steps:
1. Creating a systematic process – The risk identification process should begin with project objectives and success factors.
2. Gathering information from various sources – Reliable and high quality information is essential for effective risk management.
3. Applying risk identification tools and techniques – The choice of the best suitable techniques will depend on the types of risks and activities, as well as organizational maturity.
4. Documenting the risks – Identified risks should be documented in a risk register and a risk breakdown structure, along with its causes and consequences.
5. Documenting the risk identification process – To improve and ease the risk identification process for future projects, the approach, participants, and scope of the process should be recorded.
6. Assessing the process’ effectiveness – To improve it for future use, the effectiveness of the chosen process should be critically assessed after the project is completed.
Methods and Tools to Identify Risk
Techniques and tools that may be used to identify supply chain risks include:
• Brainstorming sessions to identify risks
• Establishment of cross-functional teams
• Risk Registers
• Total Risk Profiling
• SWOT Analysis
• Balance sheet analysis
• Site observation
• Close collaborative working with suppliers
Risk Identification in Audit
