The correct answer is A – Add risk mitigation tasks to the backlog, then prioritize in current and upcoming sprints. In Agile, risk is actively managed and addressed as part of the backlog. When the risk threshold is exceeded, the team should explicitly identify risk-related tasks and bring them into visibility for planning and execution.
From the PMI Agile Practice Guide:
“Agile teams manage risk by incorporating risk mitigation tasks directly into the backlog and addressing them early. Risk exposure is reviewed frequently, and responses are prioritized based on value and urgency.”
(PMI Agile Practice Guide, Section 6.7 – Risk Management)
Also from the PMBOK® Guide (6th Edition):
“Risks should be integrated into project activities. Agile teams identify, analyze, and prioritize risks continuously and handle them as regular backlog items.”
(PMBOK® Guide, Section 11.5 – Risk Response Planning)
Mike Griffiths further supports this by noting:
“Agile teams track risks visually and use backlog prioritization techniques to ensure they’re addressed appropriately.”
(Mike Griffiths, PMI-ACP Exam Prep, Chapter 6 – Problem Detection and Resolution)
Incorrect options:
B suggests padding estimates, which is an anti-pattern.
C is arbitrary and not recommended.
D delays risk response and contradicts proactive risk management.
Answer: A
