Process

The risk management process is applicable to any level of the organization. You can implement the risk management process outlined here at the highest level of strategy or at the level of an individual project.

Effective risk assessments require collaboration among domain experts and those with access to necessary information. The risk management framework should address the communication plan for risk management in general.

Before analyzing specific legal risks, we need to establish the scope and context of our analysis.

Limiting the scope of a legal risk management process to the legal department is an easy way to get started. Legal risk assessments by their nature consider implications for the the broader organization.

Context matters. It is tempting to identify risks that, while real, are not relevant to your context. There are some risks that are simply too large or too derivative to spend time analyzing.