Software Engineering Institute Carnegie Mellon

Main page
Overview
Paradigm
Principles
Products
Team Risk Management Overview
Frequently Asked Questions
Reports
Presentations
Bibliography

Risk Management Overview

The SEI Definition    |    Risk versus Opportunity    |    Risk Principles
Related SEI Web pages    |    For More Information

The SEI Definition

Continuous Risk Management is a software engineering practice with processes, methods, and tools for managing risks in a project. It provides a disciplined environment for proactive decision-making to:

Note: The SEI definition emphasizes the continuous aspect of risk management, hence the name Continuous Risk Management (CRM).

The SEI uses the Webster's definition of risk:
Risk is the possibility of suffering loss.

In a development project, the loss describes the impact to the project which could be in the form of diminished quality of the end product, increased costs, delayed completion, or failure.

Risk versus Opportunity

Risk and opportunity go hand in hand. Many development projects strive to advance current capabilities and achieve something that hasn't been done before. The opportunity for advancement cannot be achieved without taking risk.

"Risk in itself is not bad; risk is essential to progress, and failure is often a key part of learning. But we must learn to balance the possible negative consequences of risk against the potential benefits of its associated opportunity."

[Van Scoy, Roger L. Software Development Risk: Opportunity, Not Problem. Software Engineering Institute, CMU/SEI-92-TR-30, ADA 258743, September 1992]

Risk Management is a software engineering practice with processes, methods, and tools for managing risks in a project. It provides a disciplined environment for proactive decision-making to:

Note: The SEI definition emphasizes the continuous aspect of risk management.

return to top

Risk Principles

There are seven principles which provide a framework for effective risk management:

  1. Global perspective
  2. Forward-looking view
  3. Open communications
  4. Integrated management
  5. Continuous process
  6. Shared product vision
  7. Teamwork

For more details, see The Principles of Risk Management

return to top

Related SEI Web pages

CMMI
Commercial Off-The-Shelf (COTS)
Software Acquisition Management

For More Information

Customer Relations
Software Engineering Institute
Carnegie Mellon University
4500 Forbes Avenue
Pittsburgh, PA 15213-3890
Phone: 412-268-5800

Send comments or questions to customer-relations@sei.cmu.edu

return to top    |    Risk Management main page