Risky Business: A Comprehensive, Agile Approach to Risk Management - Defense Management Institute

Skip to main content Skip to footer site map

Updates

PCS Process Drives Continued Angst Among Military Spouses, DOD Survey Finds

Army Experiment Brings Military Closer to Joint All-Domain Command, Control Goal

Allvin says Air Force must grow, even at ‘expense’ of other services

Pentagon Rolls Out 2-Year Plan for Accelerating Software Capabilities

Pentagon AI chief emphasizes data access, integration at House hearing

GAO: Defense Health Care: Information on DOD's Processing of TRICARE Claims from Behavioral Health Providers

Pentagon orders swift review, removal of library books that address diversity, anti-racism

Army secretary says it will be ‘success’ if prime contractor dies on his watch

Up to 1,000 Transgender Troops are Being Moved out of the Military in New Pentagon Order

As DoD Shrinks Civilian Workforce, Congress Pushes Plan to Retain Medically Disqualified Recruits

How a key Pentagon tech leader plans on ‘blowing up’ outdated software risk framework

Pentagon Moves to Implement ‘Anything-as-a-Service’ Pilot Program

Hegseth Directs 20% Cuts to Top Generals and Admirals Among Other Reductions Across Military

‘Gimmicks’: GOP Lawmakers Slam Trump’s ‘Trillion-Dollar’ Defense-Spending Proposal

Trump Requests $892.6 Billion Base Defense Budget, a Real-Terms Cut

Hegseth Wants ‘Right to Repair’ Provisions in all Army Contracts

White House FY26 Discretionary Budget Request

SecDef wields axe to brass, HQs, formations to fashion leaner Army

Opinion: The Pentagon must balance speed with safety as it modernizes software

Pete Hegseth says he will end a Trump-backed Pentagon program for women

Hearing Wrap Up: DOD Must Obtain Clean Audit to Protect Taxpayer Dollars, Ensure Military Readiness

New Pentagon program to speed up software acquisition set to launch May 1

GAO: DOD Financial Management: Accelerated Timelines Needed to Address Long-standing Issues and Fraud Risk

Commissary director sees opportunity for stores amid DOD upheaval

Job cuts delay Pentagon plans to expand work to prevent sex assaults and suicides

GAO: Veterans Benefits: More Thorough Planning Needed to Help Better Protect Veterans Assisted by Representatives

Defense Secretary Orders Review of Medical Standards for Military Enlistment

Pentagon names new senior staff amid building turmoil

Hegseth Dismisses Members of Pentagon Advisory Boards

Hegseth orders review of Pentagon’s complaint process

DIU Barrels Ahead with Tri-Regional Expansion Plans

Opinion: The Pentagon Can’t Be Run Like a Business

DOD Kicks off Review of Major Defense Acquisition Programs as Hegseth Touts Reforms

White House Denies Report it is Searching for New Defense Secretary

Industry Wonders Whether the Pentagon will Ever Reform its Budgeting System

The White House is Looking to Replace Pete Hegseth as Defense Secretary

White House backs Hegseth, Leavitt says ‘entire Pentagon’ is resisting him

Navy Falls Short in Ensuring Adoption of Suicide Crisis Response Plans, Watchdog Agency Says

Former Army AI leader tapped as Pentagon’s next CDAO

Commentary: How Pete Hegseth Is Streamlining the Pentagon

DoD hiring freeze ‘severely’ impacts military child care centers

Opinion: Questions Congress should ask about DOD ‘peace through strength’ plan

Trump EOs aim to overhaul federal procurement, contracting systems

Hegseth memo to cut IT contracts lacks clarity, contradicts Pentagon downsizing plans

Military Health Care Increases Force Lethality, Readiness

Pentagon Turns Focus to Potentially Privatizing Commissaries, Military Exchanges

DOD Issues Guidance to Advance Civilian Workforce Overhaul

Pentagon Kicks Off Major Effort to Reshape Its Civilian Workforce

Commentary: Long-sought goal of better Pentagon buying may finally be within reach

Hegseth Announces Additional $5.1 Billion in DOD Spending Cuts

Defense Acquisition, Exports, and Shipbuilding Figure in Trio of New Executive Orders

Trump Directs Pentagon To Tee Up Major Acquisition Programs for Potential Cancellation

White House executive order aims to speed arm sales, cut red tape

Trump sends DOGE to review the Navy

Troops need better health care access, top enlisted tell lawmakers

Pentagon can re-fire some probationary workers, Supreme Court says

Feinberg releases new guidance for DOD’s civilian workforce shakeup

Trump, Hegseth promise record $1 trillion Pentagon budget

DOD Memo Outlines Reporting Instructions for Terminated, Canceled Awards

Pentagon Ready to Let AI Make Some Decisions

DOD Task Force to Assess Progress of DEI Elimination

Army Planners Are Weighing Force Reductions of Up to 90,000 Active-Duty Soldiers

Hill wants $15 billion for weapons Pentagon didn’t seek: report

DoD hiring still mostly frozen, but these positions are exempt

DoD floats 2035 as goal for zero trust in weapons systems

Feinberg initiates Pentagon’s implementation of DOGE-influenced regulatory review

Nominee for Chairman: Military's Top Job is Creating Peace Through Strength

DOD’s deferred resignation program to be offered April 7-14

Commentary: The Department of Defense has a user experience problem

Trump taps hypersonics expert to oversee Pentagon’s S&T portfolio

Pentagon Eliminates Lower Fitness Standards for Women in Combat Roles

SecDef gives DOD leaders less than two weeks to lay out cuts, changes

DOD reopens deferred resignation program amid push to reduce civilian workforce

20 Years After BRAC ’05: What Comes Next for our Bases and Defense Communities?

Fewer Military Families Report Moving Delays Under New System, TRANSCOM Chief Says

Navy’s Shipbuilding Strategy Requires Total Overhaul to Meet Aims, Audit Finds

Saltzman Wants ‘Fundamental Shift’ in Space Force Budget

Amid Shortage, Navy Recruiting Program Struggles to Keep Half First-Year Shipbuilders: Official

Transition Assistance Programs Offer a ‘Firehose of Information’ But Little Opportunity to Plan Careers Post-Military, Veterans Advocates Say

Pentagon Memo Lays Out Push for Advana to Become Formal Program of Record

Families at Utah Air Force Base Lose Day Care Center as Pentagon Slashes Personnel Spending

DOD Teachers, Child Care Workers, Civilian MEPS and Maintenance Workers Included in Categories Exempted from Pentagon Hiring Freeze

Does America Face a “Ship Gap” With China?

DoD works to reinstate fired probationary employees, many still await answers

Defense Secretary Hosts Elon Musk at Pentagon

GOP defense appropriators spell out CR funding levels for weapons. Will the DoD listen?

Pentagon weighs major cuts to top of US military

Opinion: Here are 10 ways DOGE can remake our outdated Defense Department

Congress sets Pentagon research, development, test and evaluation spending at $141B

Pentagon hiring freeze holds previously approved job moves hostage

Senate confirms Trump’s pick for deputy secretary of defense

How 2016 NDAA Transformed OTAs into Key Defense Contracting Tool

10 Years in, the Defense Innovation Unit Needs to Pivot

Service Leaders Beg for Flexibility as Full-Year Continuing Resolution Looms

Additional Defense Funds in Reconciliation Bill ‘May Not Be Enough’: SASC Chairman

Military Medical System Unprepared for Future Conflict, Experts Say

5 Reasons Veterans Are Especially Hard-Hit by Federal Cuts

The Pentagon Needs A Software Update—Literally

GOP Plan to Avert Government Shutdown Would Fund Next Month's Junior Enlisted Pay Raise

Veterans, Top Performers Among Those Fired at DoD in First Round of Layoffs

GAO: Shipbuilding and Repair: Navy Needs a Strategic Approach for Private Sector Industrial Base Investments

Probationary Workers from Navy, Defense Health and Logistics Agencies First to be Cut Amid DOD Layoffs

DOD Reviewing Contracting Policies, Procedures and Personnel to Comply with Trump’s DOGE Directive

Hegseth Mandates Streamlined Software Acquisition Approach in New Memo

House GOP seeks spending cuts, defense increases in plan to avert shutdown

Pentagon aims to accelerate acquisition of new tech through software-contracting change

Defense Department begins first round of layoffs

DOD reviewing contracting policies, procedures and personnel to comply with Trump’s DOGE directive

Commentary: It’s Time to Build the Digital Century Series

DOD releases new guidance on ‘situational telework’

Sign Up

Risky Business: A Comprehensive, Agile Approach to Risk Management , March , 2025

March 2025

Download PDF

From the document: "While many Department of Defense (DoD) programs today have an active risk management (RM) framework in place for their cyber-physical weapon systems, most of them are tuned for long-term risks that require significant time and effort to manage. Even if programs are doing a lightweight Agile risk management approach, such as ROAM, which generally has lower costs, it is often siloed from the other traditional RM system [1]. To achieve a comprehensive RM process, organizations need a solution that addresses each type of risk — long- and short-term — because a realized risk can have profound implications for an organization, its clients, and beyond. For example, Equifax, in 2017, provided a cautionary tale when it didn’t update a key security patch — a risk that was known but not properly addressed, and hackers accessed personal data of an estimated 143 million Americans [2].

To protect against this sort of breach and ensure effective RM, we recommend that the traditional approach to managing long-term risks be combined with such Agile RM practices as Risk ROAMing, which organizations like Scaled Agile, Inc. have used to address short-term risks. The DoD references the possibility of combining approaches in its seminal RM guidebook the Risk, Issue, and Opportunity Management Guide for Defense Acquisition Programs (the RIO Guidebook) [3].

Aligning with the RIO Guidebook, our recommendation is that a more efficient RM system can be made by using a lightweight approach like Risk ROAMing as the first line of defense against short-term risks and as an iterative and incremental approach to address long-term risks. Additionally, organizations can benefit from the data and insights produced through the Agile process to inform — and adjust — the approach to managing long-term risks. We recommend using Agile best practices as an empirical approach that favors rapid incremental reduction of risk. This approach allows programs to more completely close the smaller risk mitigation steps on a frequent Agile cadence. These risk mitigations steps are decomposed from the larger risk statements. Using this concept, the program can retire technical debt and risk mitigation steps in a timely manner."

Authors - Wilson, Stephen, Grzenia, Stephanie

Subjects

Risk Management

Authors

Wilson, Stephen, Grzenia, Stephanie

Format

PDF - Download

Related Resources

pdf file1 68068d96d753de9307dcfeeb Icon

April 1, 2025

The Measurement of Cyber Resilience in Context : Army Research Lab, April 1, 2025

Risk Management

pdf file1 6819041cd753de9307dcff56 Icon

April 2025

Resilience: Directions for an Uncertain Future Following the COVID-19 Pandemic April 2025

Risk Management

pdf file1 6807ebe04d71570a5a4d60cc Icon

March 25, 2025

Risk Management of Strategic Readiness, Concepts, Practices, Data Analytics, and Next Steps : RAND Corporation, March 25, 2025

Risk Management

pdf file1 6807ebe8d753de9307dcfef4 Icon

March 25, 2025

Risk Management of Strategic Readiness, Concepts, Practices, Data Analytics, and Next Steps : RAND Corporation, March 25, 2025

Risk Management

pdf file1 67f6bcb04d71570a5a4d6091 Icon

March 19, 2025

Addressing Today’s Software Risks Requires an Assurance Educated Workforce : Carnegie Mellon University, March 19, 2025

Risk Management

pdf file1 67fe6f84d753de9307dcfec3 Icon

March 2025

Risky Business: A Comprehensive, Agile Approach to Risk Management March 2025

Risk Management

View More

s