Risk Management Toolkit Provided by SEPO

List of Acronyms

Contact Us

How to Use This Toolkit
The most important part of your risk management effort is process and the way you use it. If you do not have a process yet, we recommend that you start using tools that will help you develop a process.

The "Process Assets" compartment of this toolkit contains tools that can help you define, tailor, implement, and monitor a risk management process on your program or within your organization. These tools include guidance, steps, and descriptions of elements of the process.

The "Support Assets" compartment of the toolkit contains detailed information that you can use at specific steps of the process.

Steps of Process Diagram

Risk Process Diagram

Click on image to enlarge.

Feedback and Contributions
If you have any additional information or assets in risk management, send them to the CMMI core team.

Also, please let us know if something in this material is:

  • Missing
  • Incorrect
  • Vague or Unclear
  • Incomplete

    We will do our best to consider your needs in future editions of the toolkit.
    Process Assets
    Standard Process Standard Process
    There is no magic to risk management. You need good communications, practical planning, and automated databases to build a successful Risk Management Process.

    Evolutionary acquisition and spiral development introduce some unique challenges in identifying, assessing, and managing risk because of the number of concurrent development and operational requirement baselines that the stakeholders need to synchronize.

  • Definitions
  • Steps of Process
  • Tailoring Guidelines

  • Compliance Compliance
    Tailoring guidance on the standard seven-step process and self-assessment checklist.

  • Self Assessment
  • Compliance Process
  • CMMI Risk Management Goals
  • Risk Review

  • AF Policies AF Policies

  • AF Policy Directive 90-9: Operational Risk Management, 1 April 2000
  • AFI 90-901: Operational Risk Management, 1 April 2000
  • AFMC Instruction 90-902: Operational Risk Management, Dec 07

  • References References


  • DSMC Risk Management Guide for DoD Acquisition
  • AFMC Pamphlet 63-101
  • DoD 5000.2-R

    View complete list.


  • Software Engineering Institute Risk Management
  • Defense Software Collaborations - Risk Management Tools and Methods

    View complete list.

    Process Assets
    Procedures Procedures
    Risk assessment and analysis procedures.

  • Affinity Diagrams
  • Brainstorming
  • Risk Plotting
  • Risk Statements

  • Taxonomies Taxonomies
    A collection of risk categories and descriptions of past programs.

  • Consolidated
  • Individual
  • Risk Areas

  • Tools and Techniques Tools and Techniques
    Risk management productivity enhancement and tracking tools.

  • RiskNav
  • Risk Matrix
  • Risk Radar
  • Cost Risk and Uncertainty - Chapter 14, GAO Cost Estimating and Assessment Guide, Mar 09

  • Training Training
    ORM Lessons Learned and examples relevant to the ESC product line.

  • Risk Process Orientation
  • Detailed Risk Process
  • Facilitator Training

  • Examples Examples

  • Sample Risk Management Plan
  • Process Lessons Learned