Certified Secure Software Lifecycle Professional (CSSLP) — Question 93

Billy is the project manager of the HAR Project and is in month six of the project. The project is scheduled to last for 18 months. Management asks Billy how often the project team is participating in risk reassessment in this project. What should Billy tell management if he's following the best practices for risk management?

Answer options

• A. Project risk management happens at every milestone.
• B. Project risk management has been concluded with the project planning.
• C. Project risk management is scheduled for every month in the 18-month project.
• D. At every status meeting the project team project risk management is an agenda item.

Correct answer: A

Explanation

The correct answer is A because project risk management should be conducted at each milestone to ensure that new risks are identified and managed throughout the project's life cycle. Option B is incorrect as risk management is an ongoing process, not limited to the planning phase. Option C suggests a monthly review, which is less effective than milestone assessments, and option D, while useful, does not encompass the comprehensive nature of risk management that occurs at milestones.