www.elsevier.com/locate/ijproman
Abstract
Project risk management (PRM) can provide a decisive competitive advantage to building sponsors. For those sponsors who take
risks consciously, anticipate adverse changes, protect themselves from unexpected events and gain expertise to price risk, gain a
leading edge. However, the realisation of this commercial advantage on design-intensive multi-disciplinary capital projects hinges to
a large extent on the approach to the initial identication of risk. The very way the identication process is conducted will have a
direct inuence on the contribution that risk analysis and management makes to the overall project management of construction
projects. This paper examines the steps involved in conducting the identication and assessment process and how they may inuence the eectiveness of risk analysis. A series of issues are examined in turn, which are considered to have a direct bearing on the
quality of the identication and assessment process. By focusing on these issues, our understanding of the contribution that risk
management makes to improving project performance may be enhanced. # 2001 Elsevier Science Ltd and IPMA. All rights
reserved.
Keywords: Risk identication; Risk assessment; Risk analysis; Design process
1. Introduction
The literature, in the main, implies that there has been
a tendency for the approach to Project risk management
(PRM), to be overly prescriptive and mechanistic. In
addition that there has been undue emphasis on the
techniques of the process rather than focusing on the
most crucial areas of the overall process, identication
and assessment [1]. While it may be obvious that the
quality of the outputs from a quantitative analysis are
largely dependent on the identication and assessment
process, prescriptive methods underplay the importance
of this initial sub-stage. Unidentied and therefore
unmanaged risks are clearly unchecked threats to a
project's objectives, which may lead to signicant overruns. Should the circumstances be so extreme, then the
failure of a single project may be seriously damaging to
the nancial status of a company. The degree to which
the identication process will inuence the eectiveness
of risk management and its contribution to the overall
project management of any particular project, is dependent
on the way the steps of the process are implemented.
The purpose of this paper is to review the steps of
identication and assessment in turn, so that their contribution may be better understood.
2. Setting risk identication and assessment in context
The overall process of project risk analysis and management may be described in simple terms as being
composed of two stages, risk analysis and risk management, as illustrated in the risk breakdown structure
(RBS) included in Fig. 1. The gure provides a readily
assimilated subdivision of the tasks to be undertaken.
Thompson and Perry [2] adopted this two-stage subdivision in their model of the stages of risk analysis and
management, which they advise has proved acceptable
to a wide range of experienced practitioners. It was also
incorporated in the series of publications produced by the
CCTA which includes Introduction to the Management of
Risk [3] and within an article entitled Specialising in risks
[4]. The risk analysis stage of the PRM process may be
considered to be divided into two sub-stages: a qualitative
analysis sub-stage that focuses on identication together
with the assessment of risk, and a quantitative analysis
0263-7863/01/$20.00 # 2001 Elsevier Science Ltd and IPMA. All rights reserved.
PII: S0263-7863(99)00070-8
148
149
150
151
Table 1
Measures of probability and impact
Scale
Very high
High
Medium
Low
Very low
Probability
>70%
5170%
3150%
1030%
<10%
Mid-value
85%
60%
40%
20%
5%
Impact
Time
Cost
Performance
>15 weeks
1015 weeks
510 weeks
15 weeks
<1 weeks
> 20m
5m20m
0.5m5m
0.1m0.5m
< 0.1m
152
Tasks
Targets
Tactics (controls)
Team
Inception
Table 2
Modied RIBA plan of work
Feasibility
Scheme Design
Sketch Plan
Production Information
154
Uncontrollable
Ination
Taxation
Late completion of infrastructure
by others
Changes in legislation
155
156
Table 4
Distinction between cause, risk and eect
Cause
C1/R1
C1/R2
C1/R3
Eect
R1
R2
R3
Table 5
Representing risks in series, in a model
A
Time (weeks)
Distribution
Calculation
Outcome
11
4
12
5
a
``IF'' equations are constructed from three components-some logical test, a value for the test if true and a value for the test if false. In this
instance the logical test is if risk A equals zero (i.e. risk A does not occur), then the value for the test is 0; however, if risk A materials, the value for
the test when false is Risk Triang for risk B.
157
158
Table 6
Representing risks in series in a modela
A
Time (weeks)
Distribution
Calculation
Outcome
2 RiskB
3 RiskC
4 RiskD
5
11
12
20
14
4
a
RA: Unexpected signicant change in user requirements/brief; RB: Comprehensive redesign and new planning application required; RC: Major
redesign and new planning application required; RD: Minor redesign and revision to planning proposal through delegated powers.
159
160