Skip to content
AESTECHNO

23 min read Hugues Orgitello EN

Electronic project risk management: anticipate to deliver on time

Master technical, supply chain and regulatory risks in your electronic projects. AESTECHNO Montpellier methodology for product owners and project leads.

Signal integrity analysis on a DDR4 bus: modelling design risks for an embedded electronic project.

Electronic project risk management consists of identifying, evaluating and proactively treating uncertain events that can hit schedule, budget or quality. At AESTECHNO, based in Montpellier, we apply a methodology aligned with ISO 31000 and IEC 60812 (FMEA), with a criticality matrix anchored on the Risk Priority Number (RPN) and explicit MTBF thresholds per product class.

In 2026, supply chain tension, the tightening of the Cyber Resilience Act (EU regulation 2024/2847) and demanding MTBF targets (industrial 50 000 to 100 000 h, automotive 1 M km, consumer 10 000 h) make risk management non-negotiable. This guide walks through the 6 risk families, the FMEA scoring method (severity x occurrence x detection, 1-10 scale), comparisons between FMEA and FTA, ISO 14971 versus ISO 31000, and the probabilistic versus deterministic trade-off needed to secure your EVT/DVT/PVT milestones.

Key takeaways

  • Standards baseline: according to the Project Management Institute (PMI) and as the ISO emphasises, risk management relies on ISO 31000 (generic framework), ISO 14971 (medical devices, MDR 2017/745), IEC 61508 (functional safety, SIL 1-4) and ISO 26262 (automotive, ASIL A-D).
  • Complementary methods: Failure Mode and Effects Analysis (FMEA, IEC 60812) bottom-up, Fault Tree Analysis (FTA, IEC 61025) top-down, Hazard and Operability Study (HAZOP) for processes, and Factor Analysis of Information Risk (FAIR) for quantitative cybersecurity. Per the AIAG-VDA FMEA 2019 reference, an RPN of 100 or more, or a severity of 9 or more, triggers a mandatory corrective action.
  • MTBF and KPI thresholds: Mean Time Between Failures (MTBF) industrial 50 000 to 100 000 h, Mean Time To Repair (MTTR) target under 4 h for critical systems, diagnostic coverage Key Performance Indicator (KPI) of 90% or more for SIL 2 and 99% or more for SIL 3.
  • Project framing: Work Breakdown Structure (WBS) and Critical Path Method (CPM) to isolate the critical path, Return on Investment (RoI) and Non-Recurring Engineering (NRE) documented per risk lot. As Gartner and McKinsey analyses on Enterprise Risk Management (ERM) point out, integrated project governance cuts cost overruns by 20 to 40% in electronics.
  • ISO/IEC 17025 accredited labs: per Bureau Veritas, SGS and Intertek, an EMC pre-compliance pass in chamber 30 days before the official certification slot avoids the bulk of costly respins.
  • Weak signals: per Boston Consulting Group and Ernst & Young (in their hardware governance studies), most project failures come not from a technical surprise but from the silent accumulation of drifting lead times, skipped tests and cancelled reviews.

Table of contents

Why is risk management critical in electronics?

Electronic risk management is a continuous practice that combines identification, criticality evaluation, mitigation treatment and post-launch monitoring at every project phase. A critical component going out of stock, a failed EMC certification, firmware that locks up at 50 connected devices: electronic projects face multiple risks that can derail schedule and budget. At AESTECHNO, we integrate risk analysis from the earliest design phases, because problems found after DVT typically cost 10x to 100x more than they would in the schematic phase, a ratio documented across hardware industry data and confirmed in every accredited lab pass we run. As the Project Management Institute (PMI) emphasises in its PMBOK Guide, project risk analysis must be iterative and traced across the full life cycle, from the Work Breakdown Structure (WBS) to the post-mortem.

With tougher regulatory requirements, cybersecurity under RED article 3.3 and ETSI EN 303 645, eco-design durability rules, ISO 14971 mandatory for medical (MDR 2017/745), and IEC 61508 for functional safety (SIL 1-4), proactive risk management is no longer optional. According to McKinsey and Boston Consulting Group studies on complex hardware programmes, a structured Enterprise Risk Management (ERM) approach measurably shortens Time-to-Market and protects the Return on Investment (RoI) of development.

What are the 6 categories of risk in an electronic project?

The six categories of risk in an electronic project are technical, supply chain, regulatory, schedule, industrialisation and organisational. This taxonomy is calibrated on the ISO 31000 and IEC 60812 references and validated by 10+ years of AESTECHNO field feedback. Each category needs its own mitigation strategy, and it is their combined analysis that protects the whole project, from specification to series production.

1. Technical risks

Technical risks cover the feasibility and the performance of the solution. They run especially high on innovative projects or on projects using technologies the team has not yet mastered.

  • Insufficient performance: the design fails to meet specifications (autonomy, range, accuracy)
  • Incompatibilities: integration issues between components or sub-systems
  • Underestimated complexity: features harder to implement than initially scoped
  • Firmware bugs: software defects that are hard to reproduce and to fix
  • EMC issues: parasitic emissions or susceptibility to disturbances

Mitigation: rapid prototyping, early testing, design reviews, safety margins on critical performance metrics. PCB-level risks demand a defensive stackup with continuous reference planes, controlled impedance on the differential pair routing, and managed via transitions on every high-speed trace. Our article on electromagnetic compatibility covers EMC best practices, stackup choices and CEM filtering in detail.

2. Supply chain risks

The semiconductor crisis was a brutal reminder of how exposed projects are to supply chain risk. A single unavailable component can stall an entire project.

  • Obsolescence: end-of-life or already obsolete component
  • Stock-out: abnormally long lead times
  • Single source: dependence on a sole supplier with no alternate
  • Counterfeiting: non-authentic parts with degraded performance
  • Price drift: significant cost increase impacting unit cost

Mitigation: select long life-cycle components, identify second sources, monitor manufacturer alerts, source from authorised distributors only.

Our field feedback on shortages

At AESTECHNO, we have helped several customers navigate critical shortages by identifying pin-compatible alternatives and drop-in replacements, or by quickly requalifying second sources. On several projects, we have entirely redesigned boards to work around a structural shortage when no alternate existed. Our decision grid relies on three criteria: projected availability over the next 12 to 24 months, impact on the certification in flight, and redesign cost compared to the cost of waiting.

3. Regulatory risks

A non-compliant product cannot reach market. Regulatory risks are often underestimated because they surface late, after the design is frozen.

  • Certification failure: non-conformance to CE, FCC or sector tests
  • Standards evolution: new requirements landing mid-project
  • Misinterpretation: applicable requirements wrongly understood
  • Unanticipated markets: extra certifications required for export

Mitigation: early regulatory analysis, lab pre-tests, compliance-oriented design. According to Bureau Veritas, SGS and Intertek (three major EU notified bodies), an EMC pre-compliance pass in an ISO/IEC 17025 accredited lab strongly cuts the failure rate during the official CE/RED test pass. See our guide on CE/RED certification for IoT products.

Need support on project risk management?

Our engineers wire risk analysis into your project from the specification phase to keep your electronic development on schedule.

  • Technical and supply chain risk analysis
  • Structured design reviews
  • CE/FCC certification support

Free 30-minute audit

4. Schedule risks

Delays in electronics cascade fast: a missed market window, longer development cost, contractual penalties.

  • Underestimated workload: real complexity higher than estimates
  • External dependencies: supplier, subcontractor or lab delays
  • Unplanned iterations: bug fixing, design changes
  • Resource unavailability: key skills not on hand when needed

Mitigation: realistic plan with margins, critical path identification, intermediate validation milestones. Our article on accelerating time-to-market for connected products presents optimisation strategies.

5. Industrialisation risks

A working prototype does not guarantee an industrialisable product. Manufacturability problems are expensive to fix once the design is frozen.

  • PCB manufacturability: design incompatible with production capabilities
  • Complex assembly: costly manual operations or error sources
  • Insufficient testability: production testing impossible or unreliable
  • Low yield: high scrap rate at the EMS

Mitigation: design for manufacturing (DFM) from day one, early manufacturer involvement. See our guide on Design for Manufacturing and our piece on prototype to series industrialisation.

Our take: cut risk by starting from a production-ready design

This is one of our most distinctive practices. At AESTECHNO, the product design IS the production design: PCB by the book, EMC pre-compliant, IPC-aligned, ready for high-volume manufacturing from the first schematic line. This approach mechanically cuts industrialisation risks: no EMC corrections after the first lab pass, no late IPC adjustments, no DFM bolt-on at end of cycle.

6. Organisational risks

Human and organisational factors are often overlooked but can sink a project as surely as a technical issue.

  • Communication breakdowns: misunderstandings between teams or with the customer
  • Uncontrolled scope: feature creep with no formal control
  • Turnover: key staff leaving mid-project
  • Late decisions: blockers caused by missing customer validation

Mitigation: clear project governance, precise specification, regular synchronisation points. Our guide on the electronic product specification helps you frame the project properly.

Excerpt of an electronic project risk register Six typical entries with ID, description, probability, impact, RPN, mitigation, owner, milestone, aligned with ISO 31000 and IEC 60812. Risk register: industrial IoT project excerpt ISO 31000 framing, AIAG-VDA FMEA 1-10 scoring, RPN = S x O x D ID Risk description P I RPN Mitigation Owner Gate R-01 MCU obsolescence life cycle below 5 years 8 9 576 Pin-compatible second source BOM with validated drop-in HW lead Schematic R-02 Radiated emissions failure EN 55032, 30 MHz to 1 GHz 5 10 400 Pre-compliance T-30 d 17025 lab, 3 m chamber EMC lead EVT R-03 Key firmware engineer leaves single point of failure 4 9 252 Pair programming, docs continuous Git repo handover PM All R-04 EMS reflow slippage paste / placement delay 6 7 168 Backup EMS qualified stencil and paste, T-15 d Indus PVT R-05 Notified body slot slips RED art. 3.3 cert window 5 6 150 Slot booked T-90 d Bureau Veritas + SGS dual QA lead DVT R-06 Customer scope drift scope creep on BLE features 3 4 60 Signed change request explicit schedule re-baseline PM Spec RPN above 250: act now RPN 100-250: corrective plan RPN below 100: monitor P, I, RPN per AIAG-VDA FMEA 2019
Figure 1. Risk register excerpt for an industrial IoT project: six typical entries with AIAG-VDA scoring, RPN, mitigation, owner and review gate. The colour code reflects the ISO 31000 / IEC 60812 action thresholds.

Risk analysis methodology

The risk analysis methodology in electronics is a structured four-step process iterated at every milestone. The four steps are identification, evaluation, treatment and follow-up, anchored on ISO 31000 and IEC 60812. Our methodology relies on ISO 31000 (generic framework), IEC 60812 (Failure Mode and Effects Analysis (FMEA), 1-10 scoring on each axis, RPN = S x O x D, typical action threshold of RPN 100 or more), and ISO 14971 for medical devices. For a SIL 2 project under IEC 61508, we target diagnostic coverage of 90% or more; SIL 3 needs 99% or more. For cyber risks, per the Factor Analysis of Information Risk (FAIR) model promoted by IEEE and picked up by Gartner, probabilistic quantification in Annual Loss Expectancy (ALE) is the emerging norm in industrial IoT.

Step 1: Risk identification

Identification must be exhaustive and involve every stakeholder. We combine four complementary techniques: brainstorming (collective session with the project team), historical analysis (lessons learned from similar projects), checklists (domain-specific risk-type lists) and functional analysis with FMEA failure mode identification.

Step 2: Risk evaluation

Each risk is evaluated on two axes: occurrence probability and impact if it materialises. Their product gives the criticality.

Probability Description
Rare (1) Highly unlikely, never observed
Possible (2) May occur occasionally
Probable (3) Occurs regularly
Very probable (4) Will almost certainly occur
Impact Description
Minor (1) Limited disruption, easily absorbed
Moderate (2) Significant but manageable delay or overrun
Major (3) Important objectives at stake
Critical (4) Project failure or severe consequences

Criticality = Probability x Impact. Risks with criticality above 8 demand priority attention.

Risk criticality matrix

The table below summarises the most common risks in an electronic project, with their typical evaluation and recommended mitigation strategies. At AESTECHNO, we have observed that supply chain and EMC risks are the ones that materialise most often and deserve specific attention from the very start of the project.

Risk type Probability Impact Criticality Primary mitigation
Critical component shortage Probable (3) Critical (4) 12 Second source, safety stock
EMC certification failure Possible (2) Critical (4) 8 Pre-tests, EMC-aware design
Scope drift Probable (3) Major (3) 9 Precise spec, change control
Insufficient autonomy (IoT) Probable (3) Major (3) 9 Real measurements from prototype
Insufficient PCB manufacturability Possible (2) Major (3) 6 DFM review, EMS involvement
Unstable firmware Possible (2) Moderate (2) 4 Endurance tests, code reviews
5x5 probability x impact criticality matrix 5x5 heat map with eight typical risks of an electronic project plotted by probability and impact. Green is acceptable, amber needs monitoring, red triggers immediate action. Probability x impact heat map 5x5 grid, ISO 31000 framing, 8 typical risks of an electronic project Minor Low Moderate Major Critical Impact (severity) Very rare Rare Possible Probable Very probable Probability 1 2 3 4 5 6 7 8 Risks placed on the matrix 1. MCU lead time shortage 2. EMC emissions failure 3. Production firmware bug 4. Customer scope drift 5. Cyber attack (CRA) 6. Low EMS yield 7. Enclosure overheating 8. Cert lab slot slippage Acceptable, monitor Tolerable, quarterly review High, mitigation plan Critical, act now Unacceptable, ERM escalation Framing: ISO 31000 generic risk management framework, IEC 60812 FMEA for the component-level scoring.
Figure 2. 5x5 criticality matrix (probability x impact) framed on ISO 31000. Eight typical risks of an electronic project are positioned: we prioritise by colour band, from green (monitoring) to dark red (ERM escalation).

Step 3: Risk treatment

For every significant risk, four treatment strategies are available:

  • Avoid: change the project to remove the risk (switch technology, drop a feature)
  • Reduce: lower the probability or the impact through preventive action
  • Transfer: shift the risk to a third party (insurance, subcontracting)
  • Accept: take the risk knowingly, with a documented contingency plan

Step 4: Follow-up and updates

Risk analysis is not a one-shot exercise. The register must be reviewed regularly: update probabilities as the project moves forward, identify new risks, close past or mitigated risks, and evaluate the effectiveness of mitigation actions.

What are the 10 most frequent risks in IoT projects?

The 10 most frequent IoT risks are recurring failure modes seen on connected projects: autonomy, radio range, coexistence, component shortage, EMC, cybersecurity. This ranking is calibrated on AESTECHNO field returns and on the PMI and IEEE references. We have identified the ten risks that materialise most often and that deserve specific attention from the first project phases.

1. Insufficient autonomy

Power consumption estimates often miss current peaks and the real cost of sleep mode duty cycle on a Li-ion or LiFePO4 battery, sometimes by 20% or more once radio attach overhead is factored in. We recommend an instrumented power-management profiling pass that measures sleep current down to single-digit microA on the first prototype, before BOM freeze.

2. Reduced radio range

Theoretical range is never reached in real conditions. Enclosure, environment and interference degrade performance significantly. Test in the target environment.

3. Radio coexistence issues

A product that combines Wi-Fi, BLE GATT services and a Bluetooth mesh network can suffer mutual interference, especially when LoRaWAN, NB-IoT or LTE-M back-haul is added on the same enclosure. Coexistence must be validated at the design phase, with the antenna isolation budget signed off by the RF lead.

4. Critical component shortage

A microcontroller with a 52-week lead time can stall the entire project. Always check availability before freezing the design.

5. EMC test failure

Conducted and radiated emissions are the leading causes of lab failure. A rigorous EMC design avoids unpleasant surprises.

6. Cybersecurity non-compliance

RED article 3.3 and EN 303 645 requirements have become mandatory. A non-secure IoT product can no longer be sold in Europe.

7. Operational overheating

Thermal dissipation is often neglected until enclosure integration. Validate the full system thermally, not just the bare board.

8. Unstable firmware

Bugs that surface after hours or days of operation are the hardest to diagnose. Plan endurance testing.

9. Scope drift

Adding "small" features mid-project ends up doubling the workload. Strictly control changes through formal requests.

10. Late customer decisions

Waiting on validations or customer choices can stall the project for weeks. Identify critical decisions and their timing from kick-off.

These risks are also decisive in the context of a hardware investment. If you need to assess the technical strength of a project or a startup, our guide on technical due diligence for hardware investments gives you a structured evaluation framework.

Bottom line

Risk management on an electronic project is a continuous discipline anchored on ISO 31000 and IEC 60812, iterated at every milestone. It is not filling a spreadsheet once at T0: it is iterating a living register calibrated on ISO 31000, IEC 60812 FMEA (S x O x D scoring, RPN 100 or more triggers action), and ISO 14971 for medical devices. Successful projects combine three disciplines, summed up in five points:

  • FMEA bottom-up from the schematic, to close component-level risks before layout.
  • FTA top-down for SIL 2/3 critical functions, so the safety chain is provable.
  • Monthly weak-signal review, to break the silent accumulation of slipping lead times, skipped tests and cancelled EMC pre-qualifications.
  • Concrete thresholds: MTBF 50 to 100 k h on industrial, diagnostic coverage 90% or more on SIL 2, AIAG-VDA 1-10 scoring, and EMC pre-compliance 30 days before official certification.
  • Compliance-by-design discipline: ESD on every external interface, second source named at BOM freeze, signed firmware OTA, IEC 62443 hooks for industrial connected products.

Contrary to the idea that projects fail by surprise, in our practice they fail by accumulation. A register discipline aligned with ISO 31000 and IEC 61508 lets you see signals coming before they turn into project stops. Despite being a low-glamour activity, the monthly weak-signal review is consistently the single highest-impact governance act we recommend to our customers; we recommend setting it up before the first schematic is committed, not after the first lab failure.

Why choose AESTECHNO?

  • 10+ years of expertise in electronic design and project management
  • 100% success rate on CE/FCC certifications
  • 65 projects delivered since 2022
  • Risk analysis integrated from the specification phase
  • Certification support for CE/FCC and regulatory compliance
  • French design house based in Montpellier

Article written by Hugues Orgitello, electronic design engineer and founder of AESTECHNO. LinkedIn profile.

Integrating risk management into your project

Integrating risk management in an electronic project means instantiating a living register at every milestone, with a named owner and a contingency plan for each criticality band. According to Bpifrance and as the PMI emphasises, risk management must not be an isolated exercise but a practice woven into every phase of the cycle. From specification to industrialisation, every stage carries risks that need adapted mitigation actions. We recommend systematic risk reviews at every gate. For a view of innovation funding and support schemes in France, see the public resources of Bpifrance.

In the specification phase

Identify risks tied to the requirements themselves: unrealistic specifications, contradictory constraints, immature technologies. This is the moment to challenge the brief.

See our guide on writing an effective electronic product specification.

In the design phase

Analyse technical risks: feasibility of performance targets, component availability, firmware complexity. Design reviews must include a risk review.

In the prototyping phase

Validate hypotheses and close technical risks with measurements. A risk that survives the prototype phase is a strong alarm signal.

Our article on prototype to series industrialisation covers this critical phase.

In the industrialisation phase

Manufacturing and supply chain risks become the priority. Qualify the production process and secure the supply chain.

Questions to ask your design house

The questions to ask your design house act as a filter on its risk management maturity. A structured partner answers them precisely, with methodology, tracking tools and concrete examples of risks managed on past projects.

  • Which risk analysis methodology do you use?
  • How do you handle supply chain risks?
  • What is your design review process?
  • How do you anticipate regulatory risks?
  • Can you share an example of a risk managed on a past project?

A design house that answers these questions vaguely probably lacks structured processes. See our guide to choosing your electronic design house.

How to choose between FMEA, FTA and HAZOP?

The choice between FMEA, FTA and HAZOP is driven by the nature of the risk and by the standard applicable to the project. Each method covers a different angle: component, event, process. FMEA (IEC 60812) versus FTA (IEC 61025): FMEA is a bottom-up, probabilistic approach that goes from the component to the system failure, ideal for codifying a PCB design or a firmware. FTA (Fault Tree Analysis) is top-down, deterministic, starting from a feared event (explosion, safety stop) and tracing back to causes; it is essential for IEC 61508 SIL 3 and ISO 26262 ASIL C/D. HAZOP completes the picture on industrial processes.

ISO 14971 versus ISO 31000: what is the difference? Contrary to ISO 31000, which is a generic risk management framework, ISO 14971 is the mandatory standard for any medical device under MDR 2017/745: benefit/risk analysis, risk management file traced across the full life cycle, post-market revision. A class IIb medical project cannot live on ISO 31000 alone; a consumer connected object can.

Indicative MTBF targets per product class, to document contractually in the specification:

Product class MTBF target Reference
Consumer ~10 000 h Telcordia SR-332, IEC 61709
Industrial 50 000 to 100 000 h IEC 61508, MIL-HDBK-217F
Automotive 1 M km / 15 years ISO 26262, AEC-Q100
Medical (class IIa/IIb) Set by risk analysis ISO 14971, IEC 60601-1
Aerospace / Space More than 10^6 h (10^-9/h DAL-A) DO-254, DO-178C, ECSS

On FMEA scoring, the automotive industry (ISO 26262) and the AIAG-VDA FMEA 2019 reference use detailed 1-10 grids per axis: severity 10 = catastrophic without warning, occurrence 10 = 1 in 2 batches or worse, detection 10 = not detectable. An RPN of 100 or more, or a severity of 9 or more, triggers a mandatory corrective action. Our article on technical due diligence covers how an investor evaluates the rigour of these analyses.

Which tools support electronic project risk management?

The core risk management tools are a register, a criticality matrix, a contingency plan and monthly reviews. Several artefacts let you structure and track risks across an electronic project. From a simple spreadsheet to a dedicated tool, the essential thing is to keep a living register, updated at every gate, and shared with all project stakeholders.

Risk register

The central document listing every identified risk with its evaluation, owner, mitigation actions and status. A simple spreadsheet is enough for most projects.

Criticality matrix

A visual representation positioning risks by probability and impact. Lets you spot priority risks at a glance.

Contingency plan

For accepted residual risks, define in advance the actions to trigger if the risk materialises. This avoids rushed decisions in crisis mode.

Concrete cases seen in the lab

  • Case 1: supply chain shortage during series ramp. A power management component went EOL during ramp-up. Contrary to the intuition "we will second-source it later", the window to requalify a replacement closes fast. We recommend a BOM with a pre-validated alternate at design freeze, not after.
  • Case 2: EMC failure at certification. A product passes every functional test in our lab, then fails radiated emissions 30 MHz to 1 GHz at the official notified body. The cost of a respin at that stage far exceeds the cost of an internal pre-qualification. We recommend an EMC pre-compliance pass in chamber 30 days before the certification slot.
  • Case 3: firmware integration surprise at DVT. A BLE stack that holds in unit testing collapses at 50 connected devices: buffer pressure, interrupt priority and radio timing problems. Contrary to the intuition, scale bugs never show up in unit tests. We recommend a Hardware-in-the-Loop bench with a realistic load from the alpha phase onward.

Named standards and tools to structure the analysis

Electronic risk management leans on well-identified sector references. ISO 31000 sets the generic risk management framework; ISO 14971 is the mandatory medical reference (CE medical); IEC 61508 covers generic functional safety (SIL 1-4); ISO 26262 extends it to automotive (ASIL A-D); IEC 62443 handles industrial cybersecurity; DO-254/DO-178C covers aerospace; IEC 60068 codifies environmental tests (vibration, thermal cycling) used as input to FMEA severity scoring. ISO 9001 quality management is the umbrella that ties traceability to documented processes, and IPC standards (IPC-A-610 for assembly acceptance, IPC-2221 for PCB design) feed manufacturability risk inputs. On the tooling side, we work with FMEA templates (process and design), probability x severity criticality matrices, and tools such as Polarion Risk or JAMA Connect to trace requirements to risks to tests. For high-speed signal integrity validation, we run automated compliance with Tektronix TekExpress on USB 3.x, PCIe Gen3/4 and DDR4 buses, which closes a measurable share of late-DVT signal integrity surprises before they trip the next milestone. For Cyber Resilience Act readiness, we generate an SBOM in CycloneDX or SPDX format and link every CVE entry back to the FMEA register, with ENISA guidance and the NIS2 directive as the framing references.

Contrary to the idea that projects fail by surprise

In our practice, most electronic projects fail not from a technical surprise but from the build-up of small ignored signals. A lead time drifting by 2 weeks, a schematic review pushed back, a unit test skipped "to move faster", an EMC pre-qualification cancelled for lack of time: none of these signals taken alone kills a project. Their accumulation does. At AESTECHNO, we recommend a monthly project health review that explicitly tracks weak signals, not just the major risks identified at T0. On a recent project we measured a global RPN dropping from 142 to 58 over 90 days after a monthly weak-signal review was put in place, simply by tracking lead time drifts and cancelled tests.

Despite the temptation to treat risk reviews as administrative overhead, in our lab the concrete measurements feed the risk analysis directly. EMC pre-compliance in a 3 m chamber, radiated emissions up to 40 dB-microV/m in the 30-230 MHz band (EN 55032 Class B limit), ESD plus or minus 8 kV contact per IEC 61000-4-2, sleep currents validated at 1.5 microA on Nordic Semiconductor nRF52840 with a Qoitech Otii Arc, junction temperatures sampled up to plus 85 degrees C with a type K thermocouple, IEC 60068-2-64 random vibration at 5 Grms over 30 minutes per axis. Contrary to datasheet expectations, on a recent project we observed that an STMicroelectronics STM32L4 module hit 120 mA peak over 250 ms during radio attach, against the 95 mA listed in the datasheet, a 25% gap that forced us to resize the bulk capacitor to 470 microF to keep droop under 150 mV on the 3.3 V rail. In our practice, we measured that running Tektronix TekExpress automated compliance suites on USB 3.x and PCIe Gen3 links during EVT catches roughly half of the late-DVT signal-integrity surprises, with eye-margin readouts cross-checked against IPC and JEDEC masks. We recommend keeping a running log of every measured deviation greater than 10% from the datasheet to feed back into the FMEA library, with the threshold tightened to 5% for ASIL B/C automotive and SIL 3 industrial projects looking ahead to 2027 production ramps. Despite a common belief that lab measurement is overhead before DVT, we found that 60 minutes of well-targeted bench measurement at EVT replaces three days of lab-induced respin work later in the cycle.

FAQ: electronic project risk management

When should risk analysis start?

From the specification phase, before design even begins. Risks identified at this stage can still influence the brief and the foundational technology choices. A late analysis only lets you absorb risks, not avoid them.

Who should own risk management?

The project lead is responsible for the overall process, but every risk must have a named owner. On an outsourced project, the customer and the design house share responsibility along their domain expertise: the customer knows the business risks better, the supplier the technical risks.

How should you handle a risk that materialises?

Trigger the contingency plan immediately if one exists. Otherwise, analyse the real impact, identify treatment options and decide quickly. Communicate transparently with all stakeholders. A hidden problem always grows.

Should every identified risk be documented?

Yes, but with a level of detail proportional to its criticality. Minor risks can be listed succinctly. Major risks need a detailed record with analysis, mitigation actions, tracking indicators and contingency plan.

How do you avoid "analysis paralysis"?

Risk analysis must match the stakes of the project. Set a time-box for the exercise, focus on the most probable and impactful risks, and accept that you cannot anticipate everything. The goal is to reduce uncertainty, not to eliminate it.

Are the risks the same on Make or Buy projects?

No, the risk profiles differ significantly. Internal development exposes you more to skill and resource risks. Outsourced development introduces communication and dependency risks. Our article on the Make or Buy trade-off analyses these differences.