search menu icon-carat-right cmu-wordmark

Rollout and Installation of Risk Management at the IMINT Directorate, National Reconnaissance Office

December 1999 Technical Report
Jo Lee Loveland Link, Rick Barbour, Al Krum, August C. Neitzel

This 1999 report provides a knowledge asset repository for the National Reconnaissance Office that can be leveraged in support of Risk Management efforts.


Software Engineering Institute

CMU/SEI Report Number



The NRO Risk Management pilot project, and subsequent rollout and installation, were launched in the Imagery Development Program (IDP) at the Imagery Intelligence (IMINT) Directorate. This was preceded by a Software Acquisition Capability Maturity Model (SA-CMM) assessment to determine strengths and gaps in IMINT's capability as an acquisition organization. From the potential SA-CMM improvement areas, IMINT leaders determined that the optimum first initiative would be Acquisition Risk Management. To launch the Risk Management initiative, IMINT leaders identified the Command and Control Division (CCD) in IDP as the pilot initiative. They further decided to conduct Software Risk Evaluations (SREs) with both the government organization and the principal contractor for CCD. The CCD division proceeded to install a dynamic, interactive Risk Management process through-out its program, with a Team Risk Management approach. This approach was leveraged by monthly CCD Team Risk Reviews (TRRs). The TRRs served as regular forums for government and contractors to identify and mitigate joint risks.  

The IDP director, observing the success of the CCD pilot, called for consistent Risk Management training across the divisions. Concurrently, the IDP director also launched the EIS System Risk Management Team (ESRT) with a mission to identify and address system-level risks. The divisional Risk Management processes (including contractor Risk Management) were combined with system-level Risk Management at the ESRT to develop a comprehensive, consistent Risk Management process that became routinely operational. 

The central purpose of this report is to provide a knowledge asset repository for the National Reconnaissance Office that can be leveraged in support of further Risk Management efforts.