DISSERTATION PROPOSAL

Introduction
Business organizations both financial and non-financial institution adopting information technology at astonishing rate in delivering good service as the end state to satisfying their customer. Dependence and interdependence of this organization on information technology have increased this as well increase the consequence of IT risks.
IT has become more and more central to business over the past decade but many enterprise organizations have not yet modify their processes for making key decisions related to IT and IT risks.
Literature
The research tailored to analysis IT risk management approach and the business impact. Including the integration of enterprise risks management in the organization. This is totally different from traditional risk management. The integrations refer to modifying the IT-operations approach, adjusting its capital structure and focus on engaging the right financial instruments.

There are key areas enterprise risk management integration will address. The first is that, it integrates and coordinates all the various risks type across the entire organization. Thereby, risk management cannot be managed in silo rather all the risk that occurred in the entire ICT environment must be managed and approach in an enterprise way.
Second, using enterprise risk management makes it possible for users to easily identify any potential incident that may affect the organization. Moreover, this makes decision taken to curb such risks in parallel with the organization objective.

IT risk management commence with risk assessment. These depend on the problem and object to be addressed. Differences of IT risks assessment methods are also analysed.

Research Questions
How can business executive understand the IT risks in their organization?
How can IT manager and business executives build the capabilities