PV-1 Assessing Projects
A first assessment of a project takes place with the definition of the business case of the project; you can specify the deliverables, the dependencies with other ideas or risks, the costs, the benefits, the risks.
Once the project characteristics are defined, an evaluation tool facilitates the selection of projects and helps define priorities.
You can assess the projects:
• At the level of the project, via:
• the qualitative review of the project (business value, level of strategic alignment, etc.)
• the assessment of the project risks
Assessing the Project
To assess a project:
1. Display the project properties.
2. Click the drop-down list then Project Assessment.
3. In the Assessment section, click New Assessment.
An assessment line appears.
4. In each corresponding column, specify:
• the business value level
• the strategic alignment level
• the cost level
• the global risk level
To validate the assessment, select the assessment line and click Validate Assessment.
Assessing Project Risks
Project risk assessment can take place globally on the project (in the Project Assessment page) or for each risk associated with the project (in Risk Assessment).
To assess the risks of a project:
1. Select the project concerned and display its properties.
2. In the properties, click the drop down-list and select Risk Assessment.
3. Click New Assessment.
4. In the window that appears, select the risks to be assessed.
• Some
• All
5. Click OK.
The assessment appears in the properties window.
You can define:
• The Impact: characterizes the impact of the risk when it occurs.
• The Likelihood: characterizes the probability that the risk will occur.
• The Inherent Risk Level: The inherent (or gross) risk indicates the risk to which the organization is exposed in the absence of measures taken to modify the likelihood of occurrence or impact of this risk. This is the result of multiplying the impact value and the likelihood value before taking account of risk prevention or reduction measures.
In summary, an inherent risk = impact x likelihood
It is calculated automatically.
• The Control Level: The Control level characterizes the efficiency level of control elements deployed (controls) to assess the risk.
• The Net Risk Level: the residual (or net) risk indicates the risk to which the organization remains exposed after management has processed the risk. This is the difference between the Inherent Risk and the Control Level. It is calculated automatically.