20154 nemation Conteence on Sofware Engineering and Comput Stes (CSECS), Kuatan, Pahang. Malays. August 1921, 2015 A Model of Mitigating Risk For IT Organisations Norsini Che Ps Dept of Software Engineering and Information Systems Faculty af Computer Science and Information Technology Universit Puta Malaysia (CPM) 43400 Serdang, Sean, Maly aoaivip@upmediany Abaret— VT orgneations are faci risks that make IT projets mat ale to met up planed schedule ad ‘quality ene, there the ned for risk mitigation IY organisations to support IT team members 10 tigate isk. This paper a contribution to propose 2 risk mitigation mde to peovide expert assistance ‘during IT rk mitiyation. By asin eam members and deesion makers to ieniy risks asocited with In TF process by. proving risk documentation ‘timate the probability and impact of TT sks. Tae risk mitigation model can ao introduce risk advice Boole Anthony ine Dept of Software Engincoring ag Information Systems Faull of Computse Science and Infor Tecnology Universiti Puta Malaysia (UP 43400 Serdang, Seki, Malays ssuleeraldsal@yalioa ci events, oF to reduce the comequonees of their According 0 (5) primarily on actions for estima the schedule, resources, and funding. [5]. Risk mitigation is imporunt in IT erganisations in so many ways, According to [8] mitigation of risk provides a mechanism for managers to handle risk eifctively by providing the stepwise execution of "isk haning. [6] stated tht the mization of