The document discusses managing risks related to information and communication technology (ICT) for organizations. It identifies several types of ICT risks including technology failures, loss or theft of equipment, unauthorized access, and legal noncompliance. It emphasizes the importance of identifying, evaluating, analyzing, and managing these risks through policies, procedures, routine maintenance, backups, disaster recovery plans, and defining roles and responsibilities. Various sources of help are provided for organizations needing assistance with ICT risk assessment, planning, implementation, and review.