How We Manage Project Risks
Every project has risks — events that might prevent us delivering on time, on budget, or to spec. Good risk management identifies, assesses, and mitigates these risks before they become problems.
Types of Project Risk
- Technical risks: Unknown integrations, untested technology, legacy system constraints
- Resource risks: Key team members unavailable, third-party capacity
- Dependency risks: Third-party APIs, client-provided content or access, regulatory approvals
- Scope risks: Unclear requirements, expanding scope, late requirement changes
- External risks: Regulatory changes, market changes, supplier failures
The Risk Register
We maintain a project risk register — a live document listing every known risk, its likelihood, potential impact, and the mitigation plan. For larger projects, the risk register is shared with you and reviewed at each project status meeting.
Risk Ratings
- High: Likely to occur and high impact — active mitigation underway, reported immediately
- Medium: Possible occurrence with moderate impact — monitored and mitigated proactively
- Low: Unlikely or low impact — monitored and noted
What We Need From You
Many risks originate on the client side. The most common include:
- Late feedback or unavailability of key stakeholders
- Late provision of access, content, or third-party credentials
- Internal approvals taking longer than expected
The earlier you flag any potential blockers, the better we can plan around them. Your Project Manager will ask about your internal constraints at kickoff and regularly throughout delivery.