Today we are faced also with the information deficit (not enough quality information that does not meet customer needs) and a surplus of information (the existence of quality information that is not sufficiently exploited by the user). Due to the existence of an information deficit and surplus we are often faced with dissatisfaction with the received information system. It is always left feeling that there is a large gap between investment and gain. Many studies (from Gartner onwards) indicate that a large percentage of  information systems not being implemented in practice, and also a great percentage does not meet user needs. Because of the above facts, information technology is often not perceived as a serious factor in the business system. Moreover there is disappointment benefits of information technology which has the consequence that the IT does not look serious, about IT bad decisions are made.. Such status of IT department is a major risk to the organization.

The question is why the effects of  informatizationis are insufficient, why it causes customer dissatisfaction and results in poor decisions about information technology? What are the reasons for failure? The hypothesis which I shall endeavor to prove here is that the main reason for the above problem is inadequate risk management process in informatization (technological, organizational, financial and human risks). At the beginning, something about basics of risks (dictionary, types of risks, the current situation in the area, risk management process),then it will be mentioned research about risk management  and at the end it will shown the risk management model proposal that would allow reduction of the deficiencies found in the study.