This page has been archived.
Information identified as archived on the Web is for reference, research or recordkeeping purposes. It has not been altered or updated after the date of archiving. Web pages that are archived on the Web are not subject to the Government of Canada Web Standards. As per the Communications Policy of the Government of Canada, you can request alternate formats on the "Contact Us" page.
Risk identification can occur periodically at specified milestones/phases in a project and/or on a continuous basis throughout the project. The following table provides steps to identify risks under both scenarios.
Table G-1: Risk Identification at specified milestones/phases
Risk Identification Steps |
Description |
Responsibility |
||
---|---|---|---|---|
|
The Year 2000 Project Manager should
determine the number of "peer-level" workshops with various
stakeholder groups involved in the Year 2000 Project that is
required to identify risks. Typical groups include:
The Year 2000 Project Manager should also establish the number of interviews with various executives involved in the Year 2000 Project required to complement the workshops. Typical interviews include:
|
Year 2000 Project Manager | ||
|
Generally, a risk identification
workshop requires 3 hours to conduct and an interview anywhere from
½ hour to 2 hours.
Workshops and interviews should all be scheduled before starting the process. |
Year 2000 Project Manager | ||
|
The TBS Risk Taxonomy questionnaire (refer to Appendix H) should be tailored to reflect the subject areas of the workshop/interview participants as well as to meet the workshop/interview duration. | Year 2000 Project Manager | ||
|
Conducting the risk identification
workshops/interviews involves:
|
Year 2000 Project Manager | ||
|
Using the notes from the workshops/ interviews, look for common risk areas or consensus across various groups/ interviewees and develop a risk list. | Year 2000 Project Manager | ||
Each risk identified requires:
|
Note: The responsibility currently assigned to the Year 2000 Project Manager can be delegated to other members of the organization including audit.
Table G-2: Continuous Risk Identification Steps
Risk Identification Steps |
Description |
Responsibility |
||
---|---|---|---|---|
|
Any individual can identify a new risk
by using the Risk Information Sheets (Appendix I). Each risk identified requires:
|
Year 2000 Project stakeholder (programmer, tester, application manager, functional resources, etc.) | ||
|
The risk information sheets should then be forwarded to the Year 2000 Project Office for initial review. | Year 2000 Project stakeholder (programmer, tester, application manager, functional resources, etc.) | ||
|
Upon review and validation, the Project Office should then forward the risk to its owner for action planning as well as the function owners affected by the risk (if not the same person) in order to potentially trigger contingency plans. | Year 2000 project Office |
Note: The responsibility currently assigned to the Year 2000 Project Manager can be delegated to other members of the organization including audit.