Tamanho da fonte: 

IT and business managers are dealing with governance, IT-Business alignment, information security and others on their top priorities. Managers are facing security, for example, under a technical approach that gives emphasis on protection against invasions, antivirus systems, access controls and others technical issues. We used here an IT risk management perspective that brings a holistic view of IT risk to the organization; This work shows a study in three organizations of one Brazilian State that investigates how they manage their IT risks.Structured interviews were made with IT managers and later, analyzed and compared with conceptual categories from the literature. Results show that IT risks culture is weakly understood and implemented on those organizations, where there are not such an IT risk methodology formally defined, neither executed. In addition, most of practices suggested in the literature were found, even without an alignment with an IT risks management process

Technology; Risk; Management; information; security