Risk management is the process of analyzing exposure to risk and determining how to best handle such exposure. Issues important to top management typically receive lot of attention from many quarters. Since top management cares about risk management, a number of popular IT risk-management frameworks have emerged.