20 Types of Project Risks

Project risk is an uncertain event or condition that, if it occurs, has an effect on the project.

project risk
#1 Scope creep

Scope creep is often a result of poor change control.

project risk
#2 Budget risk

Estimates or assumptions built into your project budget turn out to be inaccurate.

project risk
#3 Change propagation

Changes cause an unexpected negative impact on the product, people or process.

project risk
#4 Integration risk

Integration of technology, processes, or information fails.

project risk
#5 Resource risk

Failing to meet a goal due to a lack of resources.

project risk
#6 Contract risk

Facing losses as a result of the other party not fulfilling the terms of a contract.

project risk
#7 Disputes

Disagreements with an employee or stakeholder could disrupt your project.

project risk
#8 Sponsor support

Having no project sponsor or losing one in the middle of a project.

project risk
#9 Technology risk

Technology failures disrupt your project.

project risk
#10 Schedule risk

The project takes longer than planned.

project risk
#11 Project dependencies

Activities rely on the completion of another activity.

project risk
#12 Project assumptions

Assumptions are accepted as truths at the start of a project, though they turn out to be false.

project risk
#13 Skills risk

Team members are inexperienced, and lack the necessary skills to complete the project.

project risk
#14 Stakeholders

Lack of stakeholder commitment, or conflict between stakeholders, distrupts the project.

project risk
#15 Health & Safety

Failing to foster a safe and healthy work environment.

project risk
#16 Regulatory risk

Change in regulations or legislation affects the project.

project risk
#17 Quality risk

Losses due to quality that fails to meet your quality goals.

project risk
#18 Project complexity

Underestimating the complexity of the project.

project risk
#19 Supplier risk

Supplier fails to deliver on their commitments to you.

project risk
#20 Security risk

Physical or information security incident.


  • ISO 31000:2018, (2018) Risk management – Guidelines, provides principles, framework and a process for managing risk. Source
  • Deloitte & Touche LLP. (2012). Risk assessment in practice. Deloitte. Source
  • Shore, D. A. (2016). What Could Go Wrong? How to Manage Risk for Successful Change Initiatives. Harvard Professional Development. Source
  • American College of Healthcare Executives. (2017). Leading a Culture of Safety: A Blueprint for Success. Source
  • PwC Risk in Review. (2017). Managing risk from the front line. PwC. Source
  • Canadian Centre for Occupational Health & Safety, 2019 Source
  • Park, K. (2015). Risk angles. Deloitte. Source
  • Perez, J. C. (2016). Assessing risk from vendors and other third parties is key to business success. Qualys Blog. Source
  • The Institute of Internal Auditors. (2014). Managing third-party risks. Source