Abstract :
The intertwining of complex information and communication technologies with deep business, organisational and social changes means that major IT-based information systems are bound to fail at some time. It is senior management´s responsibility to ensure that the number of failures and their consequences are minimised. In order to do this, managers must understand and address the vital factors affecting IT risk management. These factors are briefly discussed and are split into two: critical points and factors likely to increase risk. A successful IT strategy must maximise innovative opportunities from the technology while minimising risks. This demands sensitivity to the political and cultural forces shaping the adoption and use of IT, as well excellence in applying the technology. The aims of the management policies designed to achieve this are outlined
