Skip to main content
M3 Playbook > Phase 4: Migration > 4.2 Maintain and Execute Risk Processes
Play Icon

4.2 : Maintain and Execute Risk Processes

Program Management
  1. Shared

    Maintain and update Risk Management Plan as necessary

  2. Shared

    Develop and employ mitigation strategies continuously throughout the migration

  3. Shared

    Maintain / update Risks, Actions, Issues, and Decisions (RAID) Log mitigation status at regular cadence

  4. Shared

    Use leadership meetings to report risk mitigation activities, inform stakeholders, & make decisions

  5. Shared

    Perform Risk Assessment

4.2 Lessons Learned

  • Maintain a risk management function within the PMO to coordinate all risk management activities across the customer and provider before migration
  • Hold regular risk management meetings and include risk management into status reporting and escalation procedures. Include documentation of risks in RAID Log in order to facilitate communication of risks
  • Maintain risk management roles and responsibilities for customer and provider team members and executives, and train team members on identifying and mitigating risks

Stakeholders

Recommended stakeholders, inputs, & outputs may vary by implementation; however, agencies that contributed to this Playbook reported these factors as increasing the likelihood of success.

Customer

  • Executive Sponsor
  • Business Owner
  • Program Manager
  • Risk Manager
  • PMO Lead
  • PMO Team

Provider

  • Executive Sponsor
  • Business Owner
  • Program Manager
  • Risk Manager
  • PMO Lead
  • PMO Team

Inputs

Outputs

USSM.GSA.gov

An official website of the General Services Administration

Looking for U.S. government information and services?
Visit USA.gov