Abstract
Modern construction projects are larger and cost more to construct than ever before. They are complex to build, are made up of many stages, components, and cost up to billions of dollars to construct.
To complicate matters further, budgets are tight and time constraints mean that not only are they difficult to construct, they must be constructed within the fastest possible timeframe to keep costs down and ensure that the finished product is operational and thus profitable.
Each construction project, even in similar projects have varying contexts, different stakeholders and a plethora of outside environmental, political, technological, social and financial influences particular to each.
This makes the modern construction project subject to high variability and uncertainty. Uncertainty leads to risk and risk if left untreated whether knowingly or not can lead to project failures and loss rather than profitability.
Due to the nature of the modern construction industry and the projects within such an industry there is a need to manage risks efficiently, cost effectively and this has given rise to risk management within construction projects.
Since the 1970’s risk management has developed from being entirely insurance based to fully developed strategies designed to better control the variables and uncertainty inherent in the projects they are designed to help control. There are many standard models of risk management in existence however none claims to have the best solution in managing such risks within construction projects due to the vast number of variables inherent within each different project. However these models ca
y basic principles and techniques which must be molded to suit each particular project. The issue then, is which approach best suits a particular project.
Outlining the basic principles is AS/NZS 31000:2009 which was developed as a guide to the implementation of a risk management system and its principles. This will be used a reference point for the following report.
This thesis outlines risk management within the context of a construction project, detailing a
ief history of risk management as well as the tools, processes and techniques which can form part of a strategic risk management system for a construction project.
Key areas within a risk management strategy which will be outlined by the thesis include establishing risk context, project stakeholders, risk identification, analysis, evaluation, treatment, monitoring & control, and communication. A case study on North Head Sewage Treatment Plant in Manly, NSW will give a basic outline in practice, of how such principles were applied in the pre-contracts phase.
Glossary
This thesis and its contents are referenced to AS/NZS 31000:2009 hence this glossary is a direct adaptation from AS/NZS 31000:2009 of terms relevant to those found within the contents of this report
Risk
The effect of uncertainty on objectives
NOTE 1: An effect is a deviation from the expected, positive, and/or negative.
NOTE 2: Objectives can have different aspects (such as financial, health and safety, and environmental goals) and can apply at different levels (such as strategic, organization-wide, project, product, and process).
NOTE 3: Risk is often characterized by reference to potential events and consequences, or a combination of these.
NOTE 4: Risk is often expressed in terms of a combination of the consequences of an event and the associated likelihood of occu
ence.
NOTE 5: Uncertainty is the state, even partial, of deficiency of information related to, understanding or knowledge of an event, its consequence, or likelihood.
Risk Management
Activities to direct and control an organisation with regard to risk
Risk Management Framework
Components that provide the foundations and organizational a
angements for designing, implementing, monitoring, reviewing and continually improving risk management throughout the organisation
NOTE 1: The foundations include the policy, objectives, mandate and commitment to manage risk
NOTE 2: The organizational a
angements include plans, relationships, accountabilities, resources, processes and activities.
NOTE 3: The risk management framework is integrated within the organisation's overall strategic and operational policies and practices.
Risk Attitude
An organisation's approach to assess and eventually pursue, retain, take or turn away from risk
Risk Management Plan
Scheme within the risk management framework specifying the approach, the management components and resources to be applied to the management of risk
NOTE 1: Management components typically include procedures, practices, assignment of responsibilities, sequence and timing of activities.
NOTE 2: The risk management plan can be applied to a particular product, process and project, and part or whole of the organization.
Risk Source
Element which alone or in combination has the intrinsic potential to give rise to risk
NOTE 1: A risk source can be tangible or intangible.
Event
Occu
ence or change of a particular set of circumstances
NOTE 1: An event can be one or more occu
ences, and can have several causes.
NOTE 2: An event can consist of something not happening.
NOTE 3: An event can sometimes be refe
ed to as an "incident" or "accident".
NOTE 4: An event without consequences can also be refe
ed to as a "near miss", "incident", "near hit" or "close call".
Consequence
Outcome of an event affecting objectives
NOTE 1: An event can lead to a range of consequences.
NOTE 2: A consequence can be certain or uncertain and can have positive or negative effects on objectives.
NOTE 3: Consequences can be expressed qualitatively or quantitatively.
NOTE 4: Initial consequences can escalate through knock-on effects.
Likelihood
Chance of something happening
NOTE 1: In risk management terminology, the word "likelihood" is used to refer to the chance of something happening, whether defined, measured or determined objectively or subjectively, qualitatively or quantitatively, and described using general terms or mathematically (such as a probability or a frequency over a given time period).
NOTE 2: The English term "likelihood" does not have a direct equivalent in some languages; instead, the equivalent of the term "probability" is often used. However, in English, "probability" is often na
owly interpreted as a mathematical term. Therefore, in risk management terminology, "likelihood" is used with the intent that it should have the same
oad interpretation as the term "probability" has in many languages other than English.
Risk Management Process
The systematic application of management policies, procedures and practices to the activities of communicating, consulting, establishing the context, and identifying, analysing, evaluating, treating, monitoring and reviewing risk
Establishing the Context
Defining the external and internal parameters to be taken into account when managing risk, and setting the scope and risk criteria for the risk management policy
External Context
External environment in which the organization seeks to achieve its objectives
NOTE 1: External context can include: the cultural, social, political, legal, regulatory, financial, technological, economic, natural and competitive environment, whether international, national, regional or local key drivers and trends having impact on the objectives of the organization; & Relationships with, and perceptions & values of external stakeholders
Internal Context
Internal environment in which the organization seeks to achieve its objectives
NOTE1: Internal context can include:
governance, organizational structure, roles and accountabilities;
Policies, objectives, and the strategies that are in place to achieve them;
The capabilities, understood in terms of resources and knowledge (e.g. capital, time, people, processes, systems and technologies);
information systems, information flows and decision-making processes (both formal and informal);
elationships with, and perceptions and values of, internal stakeholders;
The organization's culture;
standards, guidelines and models adopted by the organization; and
Form and extent of contractual relationships.
Stakeholde
Person or organization that can affect, be affected by, or perceive themselves to be affected by a decision or activity
NOTE 1: A decision maker can be a stakeholder.
Risk Assessment
Overall process of risk identification, risk analysis and risk evaluation
Risk Identification
Process of finding, recognizing and describing risks
NOTE 1: Risk identification involves the identification of risk sources, events, their causes, and their potential consequences.
NOTE 2: Risk identification can involve historical data, theoretical analysis, informed and expert opinions, and stakeholder's needs.
Risk Analysis
Process to comprehend the nature of risk and to determine the level of risk
NOTE 1: Risk analysis provides the basis for risk evaluation and decisions about risk treatment.
NOTE 2: Risk analysis includes risk estimation.
Risk Criteria
Terms of reference against which the significance of a risk is evaluated
NOTE 1: Risk criteria are based on organizational objectives, and external and internal context
NOTE 2: Risk criteria can be derived from standards, laws, policies and other requirements.
Level of Risk
Magnitude of a risk or combination of risks, expressed in terms of the combination of consequences and their likelihood
Risk Evaluation
Process of comparing the results of risk analysis with risk criteria to determine whether the risk and/or its magnitude is acceptable or tolerable
NOTE 1: Risk evaluation assists in the decision about risk treatment.
Risk Treatment
Process to modify risk
NOTE 1: Risk treatment can involve:
avoiding the risk by deciding not to start or continue with the activity that gives rise to the risk;
taking or increasing risk in order to pursue an opportunity;
emoving the risk source;
changing the likelihood;
changing the consequences;
sharing the risk with another party or parties (including contracts and risk financing); and
Retaining the risk by informed decision.
NOTE 2: Risk treatments that deal with negative consequences are sometimes refe
ed to as "risk mitigation", "risk elimination", "risk prevention" and "risk reduction".
NOTE 3: Risk treatment can create new risks or modify existing risks.
Control
Measure that is modifying risk
NOTE 1: Controls include any process, policy, device, practice, or other actions which modify risk.
NOTE 2: Controls may not always exert the intended or assumed modifying effect.
Residual Risk
Risk remaining after risk treatment
NOTE 1: Residual risk can contain unidentified risk.
NOTE 2: Residual risk can also be known as "retained risk".
Monitoring
Continual checking, supervising, critically observing or determining the status in order to identify change from the performance level required or expected
NOTE 1: Monitoring can be applied to a risk management framework, risk management process, risk or control.
Review
Activity undertaken to determine the suitability, adequacy and effectiveness of the subject matter to achieve established objectives
NOTE 1: Review can be applied to a risk management framework, risk management process, risk or control.
Communication and Consultation
Continual and iterative processes that an organization conducts to provide, share or obtain information and to engage in dialogue with stakeholders regarding the management of risk
NOTE 1: The information can relate to the existence, nature, form, likelihood significance, evaluation, acceptability and treatment of the management of risk.
NOTE 2: Consultation is a two-way process of informed communication between an organization and its stakeholders on an issue prior to making a decision or determining a direction on that issue. Consultation is:
a process which impacts on a decision through influence rather than power; and
An input to decision making, not joint decision making.
Types of Risk
Risk is the “effect of uncertainty on