Monitor risks against those identified in the project plan.

Refer to the Project Planning process area for more information about identifying project risks.

Refer to the Risk Management process area for more information about risk management activities.

The acquirer monitors the overall project risk. Many risks are the sole responsibility of the acquirer and may include information that should not be shared with the supplier (e.g., source selection sensitive, re-competition, or internal staffing).

There can also be risks that require careful coordination with suppliers and the establishment of appropriate mechanisms for the escalation of risks and risk status (e.g., feasibility of the technology to meet end-user performance requirements). Shared risks may require jointly planned mitigations.

Typical Work Products

1.    Records of project risk monitoring

Typical Supplier Deliverables

1.    Records of supplier risk monitoring

Subpractices

1.    Periodically review the documentation of risks in the context of the project’s current status and circumstances.

This review includes the risks defined in the solicitation package, those identified by the supplier in their proposal, and those raised as part of regular supplier status reporting.

2.    Revise the documentation of risks as additional information becomes available.

3.    Communicate the risk status to relevant stakeholders.