Schedule risk management for federally funded R&D
Defensible, sponsor-grade schedules for DARPA, ARPA-E/H, NIH multi-PI grants, and FFRDCs — AACE 132R-23 Level 4 risk-driven scheduling, Monte Carlo contingency, decision gates, and an append-only audit trail, at a grant-fundable $10/user/month.
Last updated: July 2026
Principal investigators and program managers running federally funded research live with a particular tension: the science is genuinely uncertain, but the sponsor — DARPA, ARPA-E, ARPA-H, an NIH multi-PI grant, or an FFRDC's program office — expects milestone dates, contingency that is defended rather than guessed, and a paper trail that survives review. A deterministic Gantt with single-point dates does not meet that bar, and a generic project tool with no schedule-risk math cannot produce one.
CritPath AI is built for exactly this gap. It applies AACE Recommended Practice 132R-23 Level 4 risk-driven scheduling, sizes contingency from Monte Carlo simulation instead of a flat percentage, models phase gates as first-class objects, and records every schedule-affecting change in an append-only audit log — in a modern web app, at $10 per user per month that fits inside a grant budget.
What federal sponsors actually ask for
Federal R&D programs are scheduled against milestones with money and follow-on funding attached: a DARPA program's phase exit, an ARPA-E performance target, an NIH aim's go/no-go, an FFRDC's annual program review. The recurring question from the sponsor is not "when is the deterministic date" but "how confident are you, and what is your basis." Answering that requires a probabilistic schedule, an explicit contingency basis, and traceability from the estimate to the committed date.
That is what separates a Level 4 risk-driven schedule from a padded Gantt. The schedule has to show the risk drivers, the simulated finish distribution, the contingency derived from it, and the decision points where the program can pivot or stop — all reproducible and reviewable.
- Probabilistic milestone dates (P50/P80/P90), not single-point promises.
- Contingency defended by analysis, traceable to a simulated basis.
- Documented go/no-go decision points tied to schedule impact.
- An audit trail that lets a reviewer reconstruct how a date was set.
AACE 132R-23 Level 4 risk-driven scheduling
AACE International's Recommended Practice 132R-23 defines maturity levels for risk-adjusted scheduling, with Level 4 being full risk-driven analysis: a quantitative schedule risk analysis where identified risks drive the simulation and the resulting contingency is built into the committed plan rather than appended as a flat buffer. It is the standard sponsors and review boards increasingly expect on programs where the schedule carries real consequence.
CritPath AI implements Level 4 directly. Risk events are injected into a Monte Carlo run against the live dependency network, the simulation produces criticality and sensitivity output, and the contingency is sized from the distribution — giving PIs and program managers a basis they can put in front of a program office and defend line by line.
Monte Carlo contingency you can defend
Flat percentage contingency — "add 20% to be safe" — is exactly the kind of number a sponsor will push on, because it has no basis. CritPath AI replaces it with a Monte Carlo engine that runs PERT-Beta distributions over task durations, injects discrete risk events from the register, and reports a full finish-date distribution with P50, P80, and P90 dates, a criticality index showing which paths drive the outcome, and a tornado chart ranking the biggest risk drivers. Optional duration correlation captures the reality that related tasks tend to slip together.
The output is a contingency figure with a documented derivation: this much schedule reserve protects this milestone to this confidence level, because these specific risks drive it. That is a number a program review can interrogate and accept, rather than a guess that invites a fight.
- PERT-Beta Monte Carlo with discrete risk-event injection.
- P50 / P80 / P90 milestone dates per program phase.
- Criticality index and tornado sensitivity to identify the true drivers.
- Optional duration correlation for tasks that slip together.
Decision gates and retroactive rescheduling
Federal programs are gated by design — phase exits, aim transitions, annual reviews — and those gates carry Go, No-Go, Pivot, or Defer outcomes that change everything downstream. In most tools a gate is just a milestone diamond; the replan after a decision is manual. CritPath AI models gates as first-class schedule objects, and a gate decision triggers retroactive rescheduling: the engine re-cascades dates, buffers, and the critical path automatically when the program pivots or a milestone slips.
For a multi-PI grant or a DARPA seedling deciding whether to advance, that means the consequence of a decision is visible immediately and on the record, not reconstructed by hand a week later. The schedule stays honest through the program's actual decision logic.
Audit trails and grant-fundable pricing
Every schedule-affecting change in CritPath AI is captured in an append-only audit log, so a reviewer or program officer can reconstruct how a committed date was reached and what changed it. Combined with Level 4 risk-driven scheduling, that gives federal programs the documented, reproducible basis their oversight expects — without the cost and friction of a legacy desktop risk tool that one analyst runs and exports as a static report.
Pricing is deliberately grant-fundable: $10 per user per month for every standard feature and unlimited projects, with AI copilot usage billed separately by metered token usage so a program only pays for the AI it actually uses. That fits comfortably inside a grant's tooling line, and the whole program team — PIs, co-investigators, program managers — can work in the same browser-based plan.
What is shipped today vs. on the roadmap
It is worth being precise about compliance posture, because federal buyers ask. Shipped today: AACE 132R-23 Level 4 risk-driven scheduling, Monte Carlo contingency, decision gates with retroactive rescheduling, and an append-only audit log. During the public beta, AI assistance — the schedule-aware copilot, AI work-breakdown decompose, and reporting — is available; fully autonomous AI-agent runs are turned off.
On the roadmap and not yet shipped: 21 CFR Part 11 electronic-signature attestation, which some federally regulated programs require, is an Enterprise roadmap item rather than a current capability. SOC 2 Type II, SAML SSO, HIPAA BAAs, and on-prem deployment are Enterprise (custom) offerings. We flag these plainly so a program office can plan around what exists now versus what is coming.
Frequently asked questions
Does CritPath AI support AACE 132R-23 Level 4 scheduling?
Yes. CritPath AI implements AACE RP 132R-23 Level 4 risk-driven scheduling: identified risks drive a Monte Carlo simulation against the live dependency network, and contingency is sized from the resulting distribution rather than added as a flat buffer — giving PIs and program managers a defensible, sponsor-grade basis for committed milestone dates.
How does CritPath AI justify schedule contingency to a federal sponsor?
It replaces flat-percentage padding with a Monte Carlo basis: PERT-Beta distributions and injected risk events produce P50/P80/P90 dates, a criticality index, and a tornado chart of the biggest drivers. The contingency figure comes with a documented derivation a program review can interrogate and accept.
Is CritPath AI 21 CFR Part 11 compliant?
Not yet. 21 CFR Part 11 electronic-signature attestation is on the Enterprise roadmap, not shipped today. CritPath does ship an append-only audit log and AACE 132R-23 Level 4 risk-driven scheduling now. For programs that require Part 11, SOC 2 Type II, or on-prem deployment, those are Enterprise (custom) discussions.
Is the pricing grant-fundable?
Yes. CritPath AI is $10 per user per month for every standard feature and unlimited projects, with AI copilot usage billed separately by metered token usage. That fits inside a typical grant's software line, and the whole program team can collaborate in one browser-based plan.
Can a whole multi-PI program team use it together?
Yes. CritPath AI is a multi-tenant web app with 2FA and an append-only audit log, so PIs, co-investigators, and program managers across a multi-PI grant or FFRDC program can work in the same schedule, with decision gates that re-cascade dates when the program pivots.
Related
See the math on your own schedule
CritPath AI is $10/user/month — real Monte Carlo, CCPM, decision gates, and a schedule-aware AI copilot. Join the waitlist for beta access.
Join the waitlist