"This handbook is primarily written for systems engineers, #risk managers, and risk analysts, but program managers of NASA programs and projects can get a sense of the value added by the process by reading the “RIDM Overview” section. It is designed to provide a concise description of RIDM and highlight key areas of the process. It can also be easily applied by unit engineers for application to units under their purview, although the application at such a low level should be based on the complexity of the engineering issue being addressed. The RIDM methodology introduced by this handbook is part of a systems engineering process which emphasizes the proper use of #riskanalysis in its broadest sense to make risk-informed decisions that impact all mission execution domains, including safety, technical, cost, and schedule. In future versions of this handbook, the risk management principles discussed here will be updated in an evolutionary manner and expanded to address operations procedures procurement, strategic planning, and institutional risk management as experience is gained in the field. Technical appendices will be developed and added to provide tools and templates for implementation of the RIDM process. Examples will continue to be developed and will be disseminated as completed. " #risk #risks #enterpriserisk #enterprisesecurityriskmanagement #intelligence #threatlintelligence #riskmanagement #riskanalysis #riskassessment #riskmanagementframework #operationalriskmanagement #projectriskmanagement #projectrisk #operationalresilience #resilience #operationalrisk #riskintelligence #governance #safety #safetyfirst #safetymanagement #safetyassessment #safetyrisks #safetyculture #safetyanalysis #personalsafety #workplacesafety #healthandsafety #hazard #danger #peril #threat #PPE #protectivesafety #workplacesafety #security #securityriskmanagement #securitymanagement #securityrisks #enterprisesecurity #cybersecurity #physicalsecurity #informationsecurity #digitalsecurity #securityoperations #enterprisesecurityriskmanagement #securityassessment #intelligence #threatlintelligence #risk #riskmanagement #crisis #crisismanagement #complexity #chaos #crisisleadership #crisisplan #crisismanagementplan #stress #governance #decisionmaking #riskmanagement #riskinformed #securitymanagement #securityriskmanagement #resilience #humanfactors #emergency #disaster #emergencyresponse
"NASA #riskmanagement (RM) processes have been based on Continuous Risk Management (CRM), which stresses the management of #risk during implementation. In December of 2008, NASA issued NPR 8000.4A , which introduced Risk-Informed Decision Making (RIDM) as a complementary process to CRM that is concerned with analysis of important and/or direction-setting decisions. Before, RM was considered equivalent to CRM; now, RM is defined as comprising both CRM and RIDM. This handbook addresses the RIDM component of RM. This is an essential part of RM since the decisions made during the course of a program ultimately “burn-in” the risk that must be retired/mitigated during the life cycle of the program (primarily during the development portion of the life cycle) using CRM processes to track progress towards the program’s goal. RIDM helps to ensure that decisions between alternatives are made with an awareness of the risks associated with each, thereby helping to prevent late design changes, which can be key drivers of risk, cost overruns, schedule delays, and cancellation. Most project cost-saving opportunities occur in the definition, planning, and early design phases of a project. The RIDM process described in this document attempts to respond to some of the primary issues that have derailed programs in the past: namely 1) the “mismatch” between stakeholder expectations and the “true” resources required to address the risks to achieve those expectations, 2)the miscomprehension of the risk that a decision-maker is accepting when making commitments to stakeholders, and 3) the miscommunication in considering the respective risks associated with competing alternatives. " #risk #risks #enterpriserisk #enterprisesecurityriskmanagement #intelligence #threatlintelligence #riskmanagement #riskanalysis #riskassessment #riskmanagementframework #operationalriskmanagement #projectriskmanagement #projectrisk #operationalresilience #resilience #operationalrisk #riskintelligence #governance #safety #safetyfirst #safetymanagement #safetyassessment #safetyrisks #safetyculture #safetyanalysis #personalsafety #workplacesafety #healthandsafety #hazard #danger #peril #threat #PPE #protectivesafety #workplacesafety #security #securityriskmanagement #securitymanagement #securityrisks #enterprisesecurity #cybersecurity #physicalsecurity #informationsecurity #digitalsecurity #securityoperations #enterprisesecurityriskmanagement #securityassessment #intelligence #threatlintelligence #risk #riskmanagement #crisis #crisismanagement #complexity #chaos #crisisleadership #crisisplan #crisismanagementplan #stress #governance #decisionmaking #riskmanagement #riskinformed #securitymanagement #securityriskmanagement #resilience #humanfactors #emergency #disaster #emergencyresponse
