Implement Risk Responses

Sensei Short Scroll 34 Executing Process Group

Implement Risk Responses

Introduction: Why This Matters

Identifying, analyzing, and planning risk responses is valuable only if the plans are carried out. The Implement Risk Responses process ensures that the agreed-upon risk strategies are executed, whether they are aimed at reducing threats or enhancing opportunities. It turns planning into action and keeps the project resilient against uncertainty.

On the PMP exam, this process is tested through situational questions that ask what a project manager should do when a risk event occurs or how to ensure risk owners are fulfilling their responsibilities. In practice, implementing risk responses prevents delays, cost overruns, and lost opportunities by putting proactive measures into play (Project Management Institute, 2021).

Purpose and Objectives

Primary Purpose: To ensure planned risk response actions are executed as defined in the risk management plan.

Key Objectives:

  • Assign and support risk owners in executing responses.
  • Ensure contingency plans and fallback plans are carried out when triggered.
  • Monitor that actions reduce threats or enhance opportunities as intended.
  • Capture results of responses in the risk register and lessons learned.
  • Generate change requests if responses require updates to baselines.

Inputs, Tools and Techniques, Outputs (ITTOs)

Inputs

  • Risk management plan
  • Risk register
  • Risk report
  • Lessons learned register
  • Project documents (issue log, stakeholder register)
  • Organizational process assets

Tools and Techniques

  • Expert judgment: Risk specialists, SMEs, PMO.
  • Interpersonal and team skills: Influencing, leadership, facilitation.
  • Project Management Information System (PMIS): Tracking actions and response effectiveness.

Outputs

  • Change requests
  • Project document updates (risk register, risk report, lessons learned)
  • Updates to project management plan

Response Actions in Execution

Threat Responses (Negative Risks)

  • Avoid: Change scope or approach to eliminate the threat.
  • Mitigate: Reduce probability or impact. Example: Add redundancy to reduce risk of system outage.
  • Transfer: Shift ownership to another party. Example: Purchase insurance.
  • Accept: No proactive action. Active acceptance may include contingency reserves.

Opportunity Responses (Positive Risks)

  • Exploit: Guarantee the opportunity occurs. Example: Assign top resources to secure success.
  • Enhance: Increase probability or impact. Example: Add marketing budget to expand product reach.
  • Share: Partner with another organization to maximize opportunity.
  • Accept: Take advantage if the opportunity arises but do not pursue actively.

Contingent Responses

  • Predefined “if-then” actions triggered by specific conditions. Example: If vendor delay exceeds five days, switch to a backup vendor.

Practical Example: Airport Baggage Automation

Context: An airport implements a new automated baggage system.

Risk Responses in Action:

  • Threat: Equipment delivery may be delayed.
    • Response: Transfer risk by requiring penalties in vendor contract.
  • Threat: Software integration issues may cause delays.
    • Response: Mitigate by performing early pilot testing.
  • Opportunity: New scanning technology may reduce processing time by 20 percent.
    • Response: Exploit by securing a contract with the technology provider and accelerating rollout.
  • Contingent Response: If daily throughput drops below 90 percent of forecast, trigger additional technician shifts.

Outcome: Proactive implementation of responses reduces risks of delay while capturing opportunities to improve efficiency.

Common Pitfalls

Failure to assign risk owners

  • Pitfall: Responses planned but no one accountable.
  • Prevention: Ensure every response has an owner.

Responses not monitored

  • Pitfall: Responses executed but results not tracked.
  • Prevention: Verify actions are effective and update the risk register.

Ignoring opportunities

  • Pitfall: Threats prioritized while opportunities left unaddressed.
  • Prevention: Execute both opportunity and threat responses.

Delaying contingent responses

  • Pitfall: Waiting too long to trigger fallback actions.
  • Prevention: Define clear triggers and act promptly.

Sensei Tip : When a risk event occurs on the exam, the best answer is usually to implement the planned response in the risk register, not to improvise a new action.

Exam Alert : Do not confuse Implement Risk Responses with Plan Risk Responses or Monitor Risks. Implement is about executing the selected strategies. Plan designs them. Monitor evaluates their effectiveness and identifies new risks.

Exam Lens

Patterns on the PMP Exam:

  • If a risk event occurs, the correct action is usually to execute the planned response, not improvise.
  • If a risk response requires updating the schedule or budget, a change request must be submitted.
  • Assigning and supporting risk owners is part of this process.
  • Contingent responses are often tested with “if-then” style scenarios.

Sample Question

Question: During execution, a supplier fails to deliver a component on time. The risk was identified earlier and a backup supplier was listed in the plan. What should the project manager do?

  1. Escalate immediately to the sponsor.
  2. Submit a change request for scope reduction.
  3. Implement the planned response by switching to the backup supplier.
  4. Revisit the risk management plan to identify a new approach.

Correct Answer: C. The correct action is to implement the planned risk response.

Quick Recap Table

Concept Description Exam Watch Point
Implement Risk Responses Executes planned strategies for threats and opportunities. Distinguish from Plan Risk Responses.
Contingent Responses Predefined “if-then” actions. Often appear in exam scenarios.
Risk Owners Accountable for executing responses. PMP exam emphasizes assignment and accountability.
Change Requests Required if responses impact baselines. Do not bypass integrated change control.

Key Takeaways

  • Implement Risk Responses ensures planned risk strategies are carried out.
  • Risk owners are accountable for execution and must be supported.
  • Contingent responses must be triggered based on clear conditions.
  • On the PMP exam, the correct answer is usually to implement the planned response, not invent a new one on the spot.
  • In practice, effective risk response execution protects projects from disruption and enables opportunities to be realized.

Next Step

With risk responses implemented, the next Executing process is Conduct Procurements, which covers obtaining goods and services from external vendors and managing procurement relationships.

Bibliography

Project Management Institute. (2021). A Guide to the Project Management Body of Knowledge (PMBOK® Guide) (7th ed.). Project Management Institute.

Scroll to Top