Implementing a new AIS system could prove to be beneficial or detrimental to an organization’s IT infrastructure. Assess the risks associated with integrating a new AIS system and suggest what management can do to minimize those risks. Solution Answer From following the agents likely cause security related problems to the AIS. From Employees From Consultants From Suppliers From competitors From IT mercenaries From Espionage experts From the above agents, AIS system facing risks. In most of cases the following types of attacks like computer viruses, backdoors, password crackers, scanners and social engineering attacks. Threats affecting the infrastructure of the AIS represent actions, possible or taken ,they might attack the system. Here 2 types of threats like internal and external. Management taken some preventions, that Can be Those can be avoided by using Risk Management can be defind as the body of methods aiming at identifying, checking , removing events that may effect the resource of the system. The body contains risk analysis, cost analysis,selection of mechanism, as well as overall assessment of the security. These risk analysis like following angles like quantitive analysis, quality analysis, workstation analysis. There are 2 ways of avoid the situation of risk, covering threats thats are mostly likely to occur, while preserving the initial checking methods, reducing the costs as to checking measures. Generally provides the Security Service management Supplier, they provide both security services and management thereof. Security management service will be conducted by Service Supplier. .