Professional Certificate in Risk Management · Glossary

Risk Management in Project Management

Expert-defined terms from the Professional Certificate in Risk Management course at London School of Business and Administration. Free to read, free to share, paired with a globally recognised certification pathway.

132 terms 14 min read Updated 4 May 2026
Risk Management in Project Management

Risk Management #

Risk Management

Risk Management is a crucial process in Project Management that involves identif… #

It aims to minimize potential negative impacts on project success by proactively addressing uncertainties and threats. Risk Management helps project teams anticipate and manage potential challenges to ensure project success.

- Risk Identification: The process of identifying risks that may affect a… #

- Risk Identification: The process of identifying risks that may affect a project.

- Risk Assessment: The process of evaluating the likelihood and impact of… #

- Risk Assessment: The process of evaluating the likelihood and impact of identified risks.

- Risk Prioritization: The process of ranking risks based on their signif… #

- Risk Prioritization: The process of ranking risks based on their significance to the project.

- Risk Mitigation: The process of developing strategies to reduce or elim… #

- Risk Mitigation: The process of developing strategies to reduce or eliminate the impact of risks.

- Risk Response Planning: The process of determining how to respond to ri… #

- Risk Response Planning: The process of determining how to respond to risks if they occur.

- Risk Monitoring and Control: The process of tracking identified risks a… #

- Risk Monitoring and Control: The process of tracking identified risks and implementing risk response plans.

Risk Register #

Risk Register

A Risk Register is a document used to record and track all identified risks thro… #

It includes information such as the description of the risk, its potential impact, likelihood of occurrence, owner, and planned response actions. The Risk Register serves as a central repository for all project risks and helps project teams stay organized and proactive in managing risks.

- Example: In a construction project, the Risk Register may include risks… #

- Example: In a construction project, the Risk Register may include risks such as weather delays, material shortages, or subcontractor issues.

- Practical Application: Project managers regularly update the Risk Regis… #

- Practical Application: Project managers regularly update the Risk Register during project meetings to ensure all risks are captured and addressed.

- Challenge: Keeping the Risk Register up to date can be challenging, esp… #

- Challenge: Keeping the Risk Register up to date can be challenging, especially in dynamic projects with changing risk profiles.

Risk Assessment #

Risk Assessment

Risk Assessment is the process of evaluating the potential risks that may impact… #

It involves analyzing the likelihood and impact of identified risks to determine their overall level of risk. Risk Assessment helps project teams prioritize risks based on their significance and develop appropriate risk response plans.

- Risk Probability: The likelihood of a risk occurring #

- Risk Probability: The likelihood of a risk occurring.

- Risk Impact: The potential consequences of a risk if it materializes #

- Risk Impact: The potential consequences of a risk if it materializes.

- Risk Exposure: The combined measure of risk probability and impact #

- Risk Exposure: The combined measure of risk probability and impact.

- Risk Tolerance: The acceptable level of risk that an organization or pr… #

- Risk Tolerance: The acceptable level of risk that an organization or project team is willing to take.

Risk Mitigation #

Risk Mitigation

Risk Mitigation is the process of developing strategies to reduce or eliminate t… #

It involves taking proactive measures to address risks before they occur or minimize their effects if they materialize. Risk Mitigation aims to enhance project resilience and increase the likelihood of project success.

- Risk Avoidance: Eliminating the risk by avoiding the activity that pose… #

- Risk Avoidance: Eliminating the risk by avoiding the activity that poses the risk.

- Risk Transfer: Shifting the risk to another party, such as through insu… #

- Risk Transfer: Shifting the risk to another party, such as through insurance or contracts.

- Risk Reduction: Taking actions to reduce the likelihood or impact of a… #

- Risk Reduction: Taking actions to reduce the likelihood or impact of a risk.

- Risk Acceptance: Acknowledging the risk and deciding not to take any ac… #

- Risk Acceptance: Acknowledging the risk and deciding not to take any action to mitigate it.

Risk Response Planning #

Risk Response Planning

Risk Response Planning is the process of determining how to respond to identifie… #

It involves developing strategies to address risks based on their likelihood and impact. Risk Response Planning aims to minimize the negative effects of risks on a project and increase the chances of achieving project objectives.

- Avoidance: Taking actions to eliminate the risk or avoid the activity t… #

- Avoidance: Taking actions to eliminate the risk or avoid the activity that poses the risk.

- Transference: Shifting the risk to another party, such as through insur… #

- Transference: Shifting the risk to another party, such as through insurance or contracts.

- Mitigation: Implementing measures to reduce the likelihood or impact of… #

- Mitigation: Implementing measures to reduce the likelihood or impact of a risk.

- Acceptance: Acknowledging the risk and deciding not to take any action… #

- Acceptance: Acknowledging the risk and deciding not to take any action to mitigate it.

Risk Monitoring and Control #

Risk Monitoring and Control

Risk Monitoring and Control is the process of tracking identified risks and impl… #

It involves regularly reviewing the Risk Register, monitoring risk triggers, and assessing the effectiveness of risk mitigation strategies. Risk Monitoring and Control helps project teams stay proactive in managing risks and adjusting strategies as needed.

- Risk Trigger: An event or condition that indicates a risk is about to o… #

- Risk Trigger: An event or condition that indicates a risk is about to occur.

- Risk Review: Regularly evaluating the status of identified risks and th… #

- Risk Review: Regularly evaluating the status of identified risks and their potential impact.

- Risk Response Evaluation: Assessing the effectiveness of implemented ri… #

- Risk Response Evaluation: Assessing the effectiveness of implemented risk response plans.

- Adaptation: Making adjustments to risk management strategies based on c… #

- Adaptation: Making adjustments to risk management strategies based on changing risk profiles.

Risk Appetite #

Risk Appetite

Risk Appetite is the level of risk that an organization or project team is willi… #

It reflects the organization's attitude towards risk and its willingness to tolerate uncertainty in pursuit of opportunities. Risk Appetite guides decision-making in risk management and helps set boundaries for acceptable risk levels.

- High Risk Appetite: Organizations that are more willing to take risks t… #

- High Risk Appetite: Organizations that are more willing to take risks to pursue opportunities and achieve high returns.

- Low Risk Appetite: Organizations that are more risk-averse and prefer t… #

- Low Risk Appetite: Organizations that are more risk-averse and prefer to avoid uncertainties that may impact their objectives.

- Moderate Risk Appetite: Organizations that strike a balance between ris… #

- Moderate Risk Appetite: Organizations that strike a balance between risk-taking and risk aversion to achieve a mix of opportunities and stability.

Risk Tolerance #

Risk Tolerance

Risk Tolerance is the acceptable level of risk that an organization or project t… #

It reflects the organization's ability to withstand uncertainties and potential losses while pursuing its objectives. Risk Tolerance helps establish boundaries for risk-taking and guides decision-making in risk management.

- Example: A software development company may have a high risk tolerance… #

- Example: A software development company may have a high risk tolerance for innovation projects but low risk tolerance for security breaches.

- Practical Application: Organizations set risk tolerance levels based on… #

- Practical Application: Organizations set risk tolerance levels based on their risk appetite, financial capacity, and strategic objectives.

- Challenge: Balancing risk tolerance with risk management strategies can… #

- Challenge: Balancing risk tolerance with risk management strategies can be challenging, especially in complex projects with multiple stakeholders.

Risk Response Strategies #

Risk Response Strategies

Risk Response Strategies are actions taken by project teams to address identifie… #

They include a range of approaches such as risk avoidance, transference, mitigation, or acceptance. Risk Response Strategies help project teams proactively manage risks and increase the likelihood of project success.

- Avoidance: Eliminating the risk by avoiding the activity that poses the… #

- Avoidance: Eliminating the risk by avoiding the activity that poses the risk.

- Transference: Shifting the risk to another party, such as through insur… #

- Transference: Shifting the risk to another party, such as through insurance or contracts.

- Mitigation: Implementing measures to reduce the likelihood or impact of… #

- Mitigation: Implementing measures to reduce the likelihood or impact of a risk.

- Acceptance: Acknowledging the risk and deciding not to take any action… #

- Acceptance: Acknowledging the risk and deciding not to take any action to mitigate it.

Risk Analysis #

Risk Analysis

Risk Analysis is the process of identifying, assessing, and prioritizing risks t… #

It involves evaluating the likelihood and consequences of risks to develop a clear understanding of their significance. Risk Analysis helps project teams make informed decisions and develop effective risk management strategies.

- Qualitative Risk Analysis: Subjective assessment of risks based on expe… #

- Qualitative Risk Analysis: Subjective assessment of risks based on expert judgment and experience.

- Quantitative Risk Analysis: Numerical assessment of risks using mathema… #

- Quantitative Risk Analysis: Numerical assessment of risks using mathematical models and data analysis.

- Sensitivity Analysis: Evaluating the impact of changing variables on pr… #

- Sensitivity Analysis: Evaluating the impact of changing variables on project risks and outcomes.

- Scenario Analysis: Assessing the impact of different scenarios on proje… #

- Scenario Analysis: Assessing the impact of different scenarios on project risks and performance.

Risk Communication #

Risk Communication

Risk Communication is the process of sharing information about project risks wit… #

It involves conveying risk assessments, response plans, and mitigation strategies in a clear and concise manner. Risk Communication helps build trust, manage expectations, and facilitate decision-making in risk management.

- Stakeholder Engagement: Involving stakeholders in risk communication to… #

- Stakeholder Engagement: Involving stakeholders in risk communication to gather feedback and insights.

- Effective Communication Channels: Using appropriate tools and platforms… #

- Effective Communication Channels: Using appropriate tools and platforms to convey risk information to stakeholders.

- Transparent Reporting: Providing accurate and timely updates on project… #

- Transparent Reporting: Providing accurate and timely updates on project risks and risk management activities.

- Feedback Mechanisms: Encouraging stakeholders to provide input on risk… #

- Feedback Mechanisms: Encouraging stakeholders to provide input on risk communication processes and strategies.

Risk Appetite Statement #

Risk Appetite Statement

A Risk Appetite Statement is a formal document that defines the level of risk th… #

It outlines the organization's attitude towards risk, risk tolerance levels, and boundaries for acceptable risk-taking. A Risk Appetite Statement helps guide decision-making in risk management and aligns risk management strategies with organizational goals.

- Components of a Risk Appetite Statement: Risk appetite levels, risk tol… #

- Components of a Risk Appetite Statement: Risk appetite levels, risk tolerance thresholds, risk management objectives, and risk management responsibilities.

- Development Process: Involves consultation with key stakeholders, asses… #

- Development Process: Involves consultation with key stakeholders, assessment of organizational risk culture, and alignment with strategic objectives.

- Implementation: Communicating the Risk Appetite Statement to all releva… #

- Implementation: Communicating the Risk Appetite Statement to all relevant stakeholders and integrating it into risk management processes.

- Review and Update: Regularly reviewing and updating the Risk Appetite S… #

- Review and Update: Regularly reviewing and updating the Risk Appetite Statement to reflect changes in organizational priorities, risk profiles, and external factors.

Risk Culture #

Risk Culture

Risk Culture refers to the collective attitudes, values, and behaviors towards r… #

It encompasses how individuals perceive, respond to, and manage risks in their day-to-day activities. A strong risk culture promotes transparency, accountability, and proactive risk management practices throughout the organization.

- Key Elements of Risk Culture: Leadership commitment to risk management,… #

- Key Elements of Risk Culture: Leadership commitment to risk management, open communication about risks, empowerment of employees to identify and address risks, and continuous learning and improvement.

- Impact of Risk Culture: A positive risk culture can enhance organizatio… #

On the other hand, a weak risk culture can lead to complacency, siloed thinking, and reactive risk management.

- Building a Strong Risk Culture: Involves leadership support, training a… #

- Building a Strong Risk Culture: Involves leadership support, training and awareness programs, embedding risk management in organizational processes, and recognizing and rewarding risk-aware behaviors.

Risk Heat Map #

Risk Heat Map

A Risk Heat Map is a visual representation of project risks based on their likel… #

It uses color-coded categories to indicate the level of risk exposure, with high-risk areas shown in red and low-risk areas in green. A Risk Heat Map helps project teams prioritize risks, allocate resources effectively, and communicate risk information to stakeholders.

- Color Coding: Red for high-risk areas, yellow for moderate-risk areas,… #

- Color Coding: Red for high-risk areas, yellow for moderate-risk areas, and green for low-risk areas.

- Heat Map Categories: Likelihood vs #

Impact, Severity vs. Urgency, Probability vs. Consequence.

- Interpretation: High-risk areas require immediate attention and proacti… #

- Interpretation: High-risk areas require immediate attention and proactive risk management strategies, while low-risk areas may be monitored less closely.

Risk Registry #

Risk Registry

A Risk Registry is a database or spreadsheet that contains information about ide… #

It serves as a repository for all project risks and helps project teams track and manage risks throughout the project lifecycle. A Risk Registry is a key tool in risk management that facilitates risk identification, assessment, and mitigation.

- Information Included: Risk description, likelihood, impact, owner, resp… #

- Information Included: Risk description, likelihood, impact, owner, response actions, status, and risk triggers.

- Updating the Risk Registry: Project teams regularly update the Risk Reg… #

- Updating the Risk Registry: Project teams regularly update the Risk Registry to reflect changes in risk profiles, new risks, or updates to risk response plans.

- Integration with Risk Management Processes: The Risk Registry is integr… #

- Integration with Risk Management Processes: The Risk Registry is integrated with risk assessment, response planning, and monitoring activities to ensure comprehensive risk management.

Risk Owner #

Risk Owner

A Risk Owner is an individual or team responsible for managing a specific risk t… #

The Risk Owner is accountable for identifying, assessing, and responding to the risk, as well as monitoring its status and impact. The Risk Owner plays a crucial role in ensuring that risks are effectively managed and mitigated to minimize their impact on the project.

- Responsibilities of a Risk Owner: Identifying and analyzing the risk, d… #

- Responsibilities of a Risk Owner: Identifying and analyzing the risk, developing risk response strategies, implementing risk mitigation actions, monitoring the risk's status, and reporting on risk management activities.

- Communication with Stakeholders: The Risk Owner communicates with proje… #

- Communication with Stakeholders: The Risk Owner communicates with project stakeholders to provide updates on the risk, seek input on risk response plans, and address concerns or questions related to the risk.

- Collaboration with the Project Team: The Risk Owner works closely with… #

- Collaboration with the Project Team: The Risk Owner works closely with the project team to integrate risk management activities into project plans, ensure alignment with project objectives, and coordinate risk response efforts.

Risk Monitoring #

Risk Monitoring

Risk Monitoring is the process of tracking identified risks and assessing their… #

It involves regularly reviewing the Risk Register, monitoring risk triggers, and updating risk response plans as needed. Risk Monitoring helps project teams stay proactive in managing risks and ensures that risk management strategies remain effective.

- Regular Risk Reviews: Project teams conduct regular risk reviews to ass… #

- Regular Risk Reviews: Project teams conduct regular risk reviews to assess the status of identified risks, evaluate the effectiveness of risk response plans, and identify new risks.

- Tracking Risk Triggers: Project teams monitor risk triggers, such as ch… #

- Tracking Risk Triggers: Project teams monitor risk triggers, such as changing market conditions or project delays, to anticipate potential risks and take preventive actions.

- Updates to Risk Response Plans: Based on risk monitoring activities, pr… #

- Updates to Risk Response Plans: Based on risk monitoring activities, project teams update risk response plans to address changes in risk profiles, new risks, or emerging threats.

Risk Response #

Risk Response

Risk Response is the action taken by project teams to address identified risks a… #

It involves implementing strategies such as risk avoidance, transference, mitigation, or acceptance to manage risks effectively. Risk Response aims to increase project resilience, reduce uncertainty, and enhance the likelihood of project success.

- Risk Avoidance: Eliminating the risk by avoiding the activity that pose… #

- Risk Avoidance: Eliminating the risk by avoiding the activity that poses the risk.

- Risk Transference: Shifting the risk to another party, such as through… #

- Risk Transference: Shifting the risk to another party, such as through insurance or contracts.

- Risk Mitigation: Implementing measures to reduce the likelihood or impa… #

- Risk Mitigation: Implementing measures to reduce the likelihood or impact of a risk.

- Risk Acceptance: Acknowledging the risk and deciding not to take any ac… #

- Risk Acceptance: Acknowledging the risk and deciding not to take any action to mitigate it.

Risk Management Plan #

Risk Management Plan

A Risk Management Plan is a formal document that outlines how project risks will… #

It includes information such as risk management objectives, roles and responsibilities, risk assessment methodologies, and risk response strategies. A Risk Management Plan helps project teams stay organized and proactive in managing risks.

- Components of a Risk Management Plan: Risk management objectives, risk… #

- Components of a Risk Management Plan: Risk management objectives, risk identification process, risk assessment criteria, risk response strategies, risk monitoring and control procedures, and communication plan.

- Development Process: Involves consulting with key stakeholders, conduct… #

- Development Process: Involves consulting with key stakeholders, conducting risk assessments, and integrating risk management activities into project plans.

- Review and Update: The Risk Management Plan is regularly reviewed and u… #

- Review and Update: The Risk Management Plan is regularly reviewed and updated to reflect changes in project risks, objectives, or external factors that may impact risk management.

Risk Identification #

Risk Identification

Risk Identification is the process of identifying potential risks that may impac… #

It involves brainstorming, stakeholder consultations, historical data analysis, and risk assessment techniques to identify uncertainties and threats. Risk Identification helps project teams develop a comprehensive understanding of project risks and initiates the risk management process.

- Brainstorming Sessions: Project teams conduct brainstorming sessions to… #

- Brainstorming Sessions: Project teams conduct brainstorming sessions to generate ideas and identify potential risks that may affect the project.

- Stakeholder Consultations: Engaging with project stakeholders to gather… #

- Stakeholder Consultations: Engaging with project stakeholders to gather insights, perspectives, and concerns related to project risks.

- Historical Data Analysis: Analyzing past project data, lessons learned,… #

- Historical Data Analysis: Analyzing past project data, lessons learned, and industry trends to identify recurring risks and patterns.

- Risk Assessment Techniques: Using tools such as SWOT analysis, PESTLE a… #

- Risk Assessment Techniques: Using tools such as SWOT analysis, PESTLE analysis, and risk checklists to identify and categorize risks based on their sources and characteristics.

Project Risk #

Project Risk

Project Risk refers to uncertainties that may impact a project's objectives, tim… #

It includes a wide range of potential threats and opportunities that may arise during the project lifecycle. Project Risk Management aims to identify, assess, and respond to risks to ensure project success and mitigate potential negative impacts.

- Types of Project Risks: Technical risks, schedule risks, cost risks, qu… #

- Types of Project Risks: Technical risks, schedule risks, cost risks, quality risks, resource risks, external risks, and strategic risks.

- Project Risk Management: The process of identifying, analyzing, and res… #

- Project Risk Management: The process of identifying, analyzing, and responding to project risks to minimize their impact on project outcomes.

- Impact of Project Risks: Project risks can lead to delays, budget overr… #

- Impact of Project Risks: Project risks can lead to delays, budget overruns, scope changes, quality issues, and stakeholder dissatisfaction if not effectively managed.

Risk Assessment Matrix #

Risk Assessment Matrix

A Risk Assessment Matrix is a tool used to evaluate and prioritize project risks… #

It categorizes risks into different risk levels, such as low, moderate, and high, to help project teams focus on high-priority risks. A Risk Assessment Matrix facilitates risk assessment, decision-making, and resource allocation in risk management.

- Scoring Criteria: Likelihood and impact are scored on a scale, such as… #

- Scoring Criteria: Likelihood and impact are scored on a scale, such as 1 to 5, and multiplied to determine the overall risk rating.

- Risk Levels: Risks are categorized into low, moderate, high, or critica… #

- Risk Levels: Risks are categorized into low, moderate, high, or critical levels based on their risk ratings.

- Prioritization: Project teams prioritize high-risk and critical risks f… #

- Prioritization: Project teams prioritize high-risk and critical risks for immediate attention and proactive risk management strategies.

Enterprise Risk Management #

Enterprise Risk Management

Enterprise Risk Management (ERM) is a comprehensive approach to managing risks a… #

It involves identifying, assessing, prioritizing, and responding to risks that may impact the achievement of organizational objectives. ERM integrates risk management practices into strategic planning, decision-making, and performance monitoring to enhance organizational resilience and value creation.

- Key Components of ERM: Risk governance, risk culture, risk appetite, ri… #

- Key Components of ERM: Risk governance, risk culture, risk appetite, risk identification, risk assessment, risk response, risk monitoring, and reporting.

- Benefits of ERM: Improved risk visibility, enhanced decision-making, in… #

- Benefits of ERM: Improved risk visibility, enhanced decision-making, increased stakeholder confidence, better resource allocation, and strategic alignment.

- Challenges of ERM: Organizational silos, resistance to change, data int… #

- Challenges of ERM: Organizational silos, resistance to change, data integration issues, cultural barriers, and lack of executive support.

Opportunity Management #

Opportunity Management

Opportunity Management is the proactive identification, assessment, and exploita… #

It involves recognizing opportunities for innovation, growth, cost savings, or competitive advantage and developing strategies to capitalize on them. Opportunity Management complements risk management by focusing on maximizing positive outcomes and value creation.

- Types of Opportunities: Strategic opportunities, operational opportunit… #

- Types of Opportunities: Strategic opportunities, operational opportunities, financial opportunities, technological opportunities, and market opportunities.

- <i #

-

More from Professional Certificate in Risk Management

Glossary
Quantitative Risk Analysis
Glossary
Risk Mitigation Strategies
Glossary
Crisis Management and Business Continuity
Glossary
Regulatory Compliance and Risk
Glossary
Operational Risk Management
Glossary
Financial Risk Management
May 2026 intake · open enrolment
from £90 GBP
Enrol