Traditionally, "risk management" as it applied to IT, focused on security strategies designed to minimize, discourage or eliminate threats from hackers, disgruntled employees, and environmental disasters like hardware failures, water and electrical damage.

As IT develops, however IT is beginning to focus on new elements of risk management. According to a report by Enterprise management Associates, risk management in IT is beginning to focus on strategies that unify and integrate initiatives to deliver corporate objectives. Warning: PDF link

Clearly, risk in terms of IT, is moving beyond the traditional definitions as it becomes integrated into strategic business processes. Risk management strategies are now being directed toward preserving resources, prioritizing expenditures and providing technologies that enable businesses to function according to plan. Further, the new roles of IT include integrator, arbitrator, and statistician. More frequently, IT is being called upon to measure the progress, value or impact of strategies employed by the company.

Risk, in IT circles, still includes security threats and environmental disasters, to be sure. As more corporate information is digitized, the effects of these misfortunes is amplified. The report suggests, however, that the role of IT in the corporation has undergone a subtle shift, and now occupies a more important seat at the corporate table.