Hello people,
I am currently proceding with implementing AS9100 from ISO9001.
Can anyone clarify:
"7.2.2 d) risks (e.g., new technology, short delivery time scale) have been evaluated."
We currently use a contract review checksheet for the review of requirements, is this a case of an addition to the contract review, or could this be a bit of a minefield?
If anyone can push me in the right direction, I would be grateful.
Thanks
Chris
Identify the Risk and prepare Mittigation Plan. Follow the stages:
- Risk Identification – Identify risks through discussion with all major stakeholders.
- Risk Categorization – Group the risks into categories
- Risk Probability and Impact Assessment – For each risk identified, assess the risk event in terms of likelihood of occurrence (Risk Probability) and its effect on project objectives if the risk event occurs (Risk Severity = Impact Score). This information will be used to prioritize the risk using established threshold criteria.
- Risk Prioritization - Risks that meet the threshold criteria will be so noted in the Risk Register. These Risks will be prioritized.
- Risk Response Planning – For each risk in the Risk Register that is above the Risk Threshold:
- Determine the options and actions to reduce the likelihood or consequences of impact to the project’s objectives
- Determine the response based on a cost/benefit analysis (cost vs. expected effectiveness)
- Describe the actions to be taken to mitigate the risk
- Describe the Signs and Symptoms that may be indicators of Risk Event occurrence
- Describe the actions to be taken when the risk event occurs (contingency plan)
- Assign responsibilities for each agreed-upon response
- Assign a “due date” where risk responses are time-sensitive
- Determine impact on project budget and schedule and make appropriate changes or additions to the project plan.
- Incorporate this information into the Risk Register