IT Risk Management: 1) Understand the organisation organisational structure, Policies, resource and knowledge, culture 2) Management commitment Accountabality for managing risk, risk management policy and review, Methods for resolving conflicting intrests. 3) Risk management approach view of stake holder, Combination of multiple risks, Likelyhood impact and criteria 4)Objectives of risk management understand buisness risk, understand opportunities, get support, meet complience requirement 5)Information asset inventory People, process, technology etc... Solution IT Risk Management: 1) Understand the organisation organisational structure, Policies, resource and knowledge, culture 2) Management commitment Accountabality for managing risk, risk management policy and review, Methods for resolving conflicting intrests. 3) Risk management approach view of stake holder, Combination of multiple risks, Likelyhood impact and criteria 4)Objectives of risk management understand buisness risk, understand opportunities, get support, meet complience requirement 5)Information asset inventory People, process, technology etc....