This document discusses 10 risk concepts that are problematic and provides alternatives that should be used instead. These concepts include heat maps, risk reports, risk tolerance statements, self-assessments, risk registers, enterprise risk management frameworks, inherent risks, risk scoring and ratings, red/yellow/green prioritizations, and key risk indicators. The document recommends using tools based on probabilistic analysis, decision trees, improved planning, embedded policies and controls, decision-maker focused assessments, integrated planning processes, proven probabilistic methods, auditing of controls, scenario analysis, and measurement of plan performance as better approaches.