This document discusses risk management in software project management. It defines risk and risk management, categorizes risks, and outlines the risk management process of identification, analysis, planning, and monitoring. Specific risks like personnel shortfalls and unrealistic estimates are also examined. Methods of risk analysis like probability impact matrices are presented. The document concludes by comparing traditional project planning with the critical chain approach to risk management.