Free Practice Questions for PMI PMI-RMP Exam

An affinity diagram is a tool used to visually organize and group risks or ideas based on their similarities and categories. It helps in structuring the risks for further analysis and discussion. (Reference: PMBOK Guide, 6th Edition, p. 138)

 According to the PMBOK Guide, an affinity diagram is a tool and technique for the identify risks process that allows large numbers of ideas to be sorted into groups for review and analysis. An affinity diagram can help the risk manager to visually organize the risks identified in the pre-workshop survey by grouping them into categories based on their similarities or common characteristics. This can help the risk manager to facilitate the risk analysis and prioritization in the workshop, as well as to stimulate new patterns of thinking and generate additional risks.

Some of the other options are not relevant or appropriate for the question scenario:

The analytical hierarchy process is a technique for the plan risk management process that provides a method for comparing and ranking alternatives based on multiple criteria. It is not a tool for visually organizing risks.

A SWOT analysis is a technique for the identify risks process that examines the project from the perspective of its strengths, weaknesses, opportunities, and threats. It is not a tool for visually organizing risks, but rather for generating them.

Assigning probability and impact is a technique for the perform qualitative risk analysis process that assesses the likelihood and the potential effect of each individual risk on the project objectives. It is not a tool for visually organizing risks, but rather for evaluating them.

PMBOK Guide, 6th edition, pages 397-399, 414-415, 431-432, 441-442; PMI-RMP Exam Content Outline, 2015, page 7.

In a situation where there are concerns about finishing the project within the budget due to delays and cost increments, using estimation and probability analysis tools, such as Monte Carlo simul-ations, is appropriate. These tools help the risk manager to model potential outcomes based on different scenarios, providing a statistical probability of staying within the budget or finishing on time. This data-driven approach allows for more informed decision-making regarding the project's financial risks​.

 A decision tree analysis is a tool that helps to evaluate and select the best option among different alternatives based on costs and probabilities. A decision tree analysis uses a graphical representation of a decision problem, where each node represents a decision point, a chance event, or an outcome. The branches of the tree show the possible choices, events, or consequences that can occur at each node. The end nodes of the tree show the expected value or payoff of each option, which is calculated by multiplying the probability and the cost or benefit of each outcome. A decision tree analysis can help to compare the expected values of different options and choose the one that maximizes the benefit or minimizes the cost1. A decision tree analysis can also help to incorporate uncertainty and risk into the decision making process, as it shows the range of possible outcomes and their likelihoods2. Therefore, the project manager should perform a decision tree analysis to evaluate and select the best option based on costs and probabilities for a mega facility development project. Performing a FMECA fault tree analysis, conducting a sensitivity analysis, or conducting an analytic hierarchy process are not the best options to evaluate and select the best option based on costs and probabilities. A FMECA fault tree analysis is a tool that helps to identify and analyze the potential causes and effects of failures in a system or process. It uses a graphical representation of a failure event, where each node represents a basic or intermediate event that contributes to the failure. The branches of the tree show the logical relationships between the events, using AND or OR gates. A FMECA fault tree analysis can help to calculate the probability and severity of failures, as well as to prioritize and mitigate the risks3. However, a FMECA fault tree analysis does not help to compare different options or alternatives, as it focuses on a single failure scenario. Conducting a sensitivity analysis is a tool that helps to measure how the uncertainty in the input variables of a model affects the output or outcome of the model. It uses a graphical or numerical representation of the relationship between the input and output variables, showing how the output changes when the input changes. A sensitivity analysis can help to identify the most critical or influential variables, as well as to test the robustness or reliability of the model4. However, a sensitivity analysis does not help to compare different options or alternatives, as it focuses on a single model or option. Conducting an analytic hierarchy process is a tool that helps to evaluate and select the best option among different alternatives based on multiple criteria. It uses a mathematical method of pairwise comparison, where each alternative is compared to each other in terms of each criterion. The results of the comparisons are then aggregated into a matrix, which shows the relative importance or preference of each alternative. An analytic hierarchy process can help to rank the alternatives and choose the one that best satisfies the criteria5. However, an analytic hierarchy process does not help to incorporate costs and probabilities into the decision making process, as it relies on subjective judgments and preferences. References: 1, 2, 3, 4, 5.

A decision tree analysis is a quantitative risk analysis technique that helps evaluate and select the best option based on costs and probabilities. It visually represents different decision paths and their associated probabilities, allowing the project manager to compare and select the most appropriate option for the project.

The risk owner should implement the secondary risk response, as it is now being tolerated, and update the project documents accordingly. They should also update and communicate the assessments of the secondary risk's impact to ensure everyone is aware of the situation.

According to the PMI-RMP Handbook1, the risk owner is responsible for implementing the risk response plan and monitoring the risk and its secondary risks. Therefore, the risk owner should take the following two actions when the secondary risk emerges:

Implement the secondary risk response and update the project documents. This action is consistent with the risk response strategy of tolerance, which means accepting the risk and its consequences. The risk owner should execute the planned response for the secondary risk, such as contingency plans or fallback plans, and update the relevant project documents, such as the risk register, the risk report, and the lessons learned register, to reflect the current status and impact of the risk.

Update and communicate assessments of the secondary risk’s impact. This action is consistent with the risk monitoring and control process, which involves tracking the identified risks, evaluating their impact and probability, and reporting the risk information to the appropriate stakeholders. The risk owner should reassess the secondary risk’s impact on the project objectives, such as scope, schedule, cost, and quality, and communicate the results to the project manager and other relevant stakeholders, such as the sponsor, the customer, and the team members.

PMI-RMP Handbook1

PMBOK Guide, 6th edition, Chapter 11: Project Risk Management2

ISO 31000 and the PMBOK® Guide both stress the need for a balanced approach in multinational or complex projects: processes must provide structure and consistency across the organization while remaining flexible enough to accommodate local differences and dynamic risks. This is especially important in projects with varied regulations and stakeholder priorities.

“The organization’s risk management framework should be customized and proportionate to the organization’s external and internal context related to its objectives… combining structure for consistency and flexibility to adapt to specific circumstances.”

— ISO 31000:2018, Section 5.3 (Framework and Customization)

“Risk management planning should reflect both organizational standards and the specific needs of the project, ensuring consistent practices while retaining flexibility for adaptation as needed.”

— PMBOK® Guide, 6th Edition, Section 11.1

Therefore, developing a strategy that combines structure with flexibility (Option B) is the best practice.

The project manager should have performed risk identification exercises for the full lifecycle of the project, including the construction phase, to ensure that all potential risks were identified and addressed in the risk register.

Risk identification is the process of determining the risks that may affect the project and documenting their characteristics. Risk identification should be performed throughout the project lifecycle, as new risks may emerge or change over time. Risk identification should also consider all aspects of the project, such as scope, schedule, cost, quality, resources, stakeholders, and procurement. By performing risk identification exercises for the full lifecycle of the project, the project manager could have identified and planned for the potential risks associated with the construction phase, such as delays, material shortages, quality issues, or safety hazards. This would have helped to prevent or mitigate the impact of the risk event that occurred, and to ensure that the risk register is updated and comprehensive. Performing a Monte Carlo sensitivity analysis, adding generic construction risks, or reviewing the assumptions/exclusions register are not sufficient or effective ways of identifying the specific risks that may affect the project during the construction phase. These are either tools for risk analysis, risk response planning, or project initiation, but not risk identification. References: PMI-RMP® Certification Handbook1, page 9; PMBOK® Guide, pages 397-398.

Renting equipment until the critical piece is repaired is a "Mitigate" response. Mitigation involves taking actions to reduce the impact or likelihood of a risk event. In this case, renting equipment is a way to reduce the impact of the equipment breakdown on the project’s timeline and execution, thereby ensuring that the project can continue with minimal disruption.

PMI’s guidelines describe mitigation as a strategy to reduce the severity or probability of a risk, making it a suitable response in this scenario​​.

SWOT analysis identifies strengths, weaknesses, opportunities, and threats. In this case, B and C are potential threats or opportunities. B is a threat as engineers' reservations may hinder the initiative, and C is an opportunity as growing competition may drive the company to improve its digital signature capabilities.

 A SWOT analysis is a technique used to identify the strengths, weaknesses, opportunities, and threats of a project, organization, or option. It helps to evaluate the internal and external factors that can affect the project’s success or failure. In this question, the project manager has used a SWOT analysis to identify the threats and opportunities for the digital signature initiative. A threat is an external factor that can negatively impact the project’s objectives, while an opportunity is an external factor that can positively impact the project’s objectives. Therefore, two potential threats or opportunities under the SWOT analysis are:

B. The organization’s professional engineers having reservations about possible information tampering. This is a threat because it can reduce the acceptance and adoption of the digital signature initiative by the key stakeholders, who are the professional engineers. They may have concerns about the security, reliability, and validity of the digital signatures, and may prefer to use the traditional wet signatures. This can affect the project’s scope, quality, and stakeholder satisfaction.

C. A growing number of competitors with digital signatures. This is an opportunity because it can create a competitive advantage for the organization, as it can offer faster, cheaper, and more efficient services to its clients. The digital signature initiative can also help the organization to comply with the industry standards and regulations, and to enhance its reputation and brand image. This can affect the project’s schedule, cost, and profitability.

The other options are not threats or opportunities under the SWOT analysis, because they are either internal factors or not relevant to the project’s objectives. They are:

A. The management team agreeing to include more resource for the digital signature initiative. This is a strength, not a threat or an opportunity, because it is an internal factor that can help the project to achieve its objectives. It can provide more support, expertise, and funding for the project, and improve the project’s performance and quality.

D. An elimination of manual steps associated with recording wet signatures. This is a benefit, not a threat or an opportunity, because it is an outcome or result of the project, not a factor that can affect the project. It can improve the efficiency, accuracy, and convenience of the project’s deliverables, and reduce the errors, delays, and costs associated with the wet signatures.

E. The growing adoption of mobile communications in the industry. This is a trend, not a threat or an opportunity, because it is a general change or development in the industry, not a specific factor that can affect the project. It can influence the demand, expectations, and preferences of the project’s customers and stakeholders, but it does not directly impact the project’s objectives.

PMI, 2017. A Guide to the Project Management Body of Knowledge (PMBOK® Guide) – Sixth Edition. Newtown Square, PA: Project Management Institute, Inc., pp. 375-3761 PMI, 2019. Practice Standard for Project Risk Management. Newtown Square, PA: Project Management Institute, Inc., p. 182

 According to the PMBOK Guide, 6th edition, Section 11.6.2.1, Sensitivity Analysis, a sensitivity analysis is a technique that helps to determine which individual project risks or other sources of uncertainty have the most potential impact on project outcomes. A sensitivity analysis can be used to prioritize risks based on their relative effect on the project objectives, such as cost, schedule, quality, or scope. A sensitivity analysis can also help to identify areas where risk response efforts may be most effective. Therefore, the risk manager should perform a sensitivity analysis and determine the correct priority of every identified risk, rather than agreeing with the SME or the project sponsor, or marking every risk with the same or different priority without proper analysis. References: PMBOK Guide, 6th edition, Section 11.6.2.1, Sensitivity Analysis1

The risk manager should perform a sensitivity analysis to assess the impact of each risk on the project objectives. This will help in determining the correct priority of every identified risk, ensuring that resources are allocated effectively and that the most critical risks are addressed first.

Categorizing risks by their impact on project objectives ensures that risk response plans are aligned with project priorities. This helps in focusing on the most critical risks and their potential impact on the project's success.

 Categorizing risks by their impact to the project objectives is a way of aligning the risk management process with the project goals and stakeholder expectations. By doing so, the risk management professional can ensure that the risk response plans are focused on the most critical aspects of the project and that the project priorities are being considered in the decision making. This approach can also help to communicate the value of risk management to the project team and the stakeholders, as they can see how the risk management activities are contributing to the project success. Categorizing risks by their impact to the project objectives does not necessarily help to identify the specific causes of risks, determine the level of project leadership and organizational involvement, or assign risks and risk severities to functional disciplines and departments. These are other possible ways of categorizing risks, but they are not the main purpose of using the impact to the project objectives approach. References: PMI-RMP® Certification Handbook1, page 9; PMBOK® Guide, page 415.