Skip to content
PMPCAPM

Mitigate (Risk Strategy)

Mitigate is a threat response strategy that reduces the probability of occurrence and/or the impact of a threat to within acceptable limits. The risk is not eliminated but brought to a manageable level.

Share:

Explanation

Mitigation involves taking early action to decrease either the likelihood that a threat will materialize or the severity of its consequences if it does. Common mitigation techniques include adding testing or reviews, selecting more experienced resources, adopting proven methodologies, building prototypes, adding redundancy, and simplifying processes.

For example, if there is a risk of a critical system component not passing a performance test, mitigation might include conducting early performance benchmarks, engaging specialized engineers, or adding a parallel testing track. These actions do not eliminate the risk of test not passing, but they significantly reduce its probability.

Mitigation is the most commonly used threat response strategy because it is often more practical than avoidance and more proactive than acceptance. However, the cost of mitigation actions must be weighed against the expected reduction in risk exposure. Residual risk (the risk remaining after mitigation) should be documented in the risk register.

Key Points

  • Reduces probability or impact of a threat to acceptable levels
  • Does not eliminate the risk; residual risk remains
  • Examples: prototyping, testing, training, redundancy, proven methods
  • Most commonly used threat response strategy

Exam Tip

Mitigation reduces the risk but does not eliminate it. After mitigation, the remaining risk is called residual risk and must be documented.

Frequently Asked Questions

Related Topics

High-yield topics our learners drill most before exam day.

Risk Register

The risk register is a project document that records the details of individual project risks, including their identification, analysis results, response plans, and current status.

Transfer (Risk Strategy)

Transfer is a threat response strategy that shifts the negative impact and ownership of a threat to a third party. The risk is not eliminated but the responsibility for managing it moves to another entity.

Burndown Chart

A Burndown Chart is a graphical representation of work remaining versus time in a Sprint or release, showing whether the team is on track to complete the planned work.

Resource Leveling

Resource leveling is a resource optimization technique in which adjustments are made to the project schedule to keep resource usage at or below a defined limit, often resulting in a longer project duration.

Stakeholder Mapping

Stakeholder mapping is the visual representation of stakeholder relationships, influence, interest, or other attributes using grids, matrices, or diagrams to support analysis and engagement planning.

Relative Estimation

Relative Estimation is an agile technique where work items are sized in comparison to each other rather than in absolute units like hours or days, providing faster and more accurate estimates.

Cost Performance Index (CPI)

Cost Performance Index (CPI) is an EVM efficiency metric that measures cost performance as the ratio of earned value to actual cost: CPI = EV / AC.

Schedule Performance Index (SPI)

Schedule Performance Index (SPI) is an EVM efficiency metric that measures schedule performance as the ratio of earned value to planned value: SPI = EV / PV.

Earned Value Management (EVM)

Earned Value Management (EVM) is a methodology that integrates scope, schedule, and cost data to assess project performance and progress objectively.

Part of

Risk Management

Study full domain →

Test your knowledge

Practice scenario-based questions on this topic with detailed explanations.