Risk report

The purpose of the risk report is to supply the various stakeholders with sufficient information to allow them to make informed decisions in respect of the test process. The information in the risk report should therefore also focus on the consequences of the event for the achievement of the agreed result within the agreed timeline and cost levels.

In more detail

The test manager creates a risk report if events take place for which measures are required to be taken that the test manager is not authorised to decide upon. Another reason for creating a risk report is if the client asks the test manager to set out consequences and possible measures for one or more scenarios upon which a decision is required to be taken. For example, a scenario in which the client sees that the development activity is overrunning and he considers making budget available from the test.

In a risk report, the following subjects are dealt with, at a minimum:

A description of the event / the scenario
The consequences of the event for the testing
The significance of the event to the degree to which the various product risks are covered
Possible countermeasures
If possible, the test manager outlines several measures with the associated costs. An estimate is also made of the influence of the measures on the recognised consequences and degree of coverage of product risks
Recommendation
The test manager provides a recommendation in respect of the measure(s) to be selected.