Your IT systems and the information that you hold on them face a wide range of risks. If your business relies on technology for key operations and activities, you need to be aware of the range and nature of those threats.
您的IT系統和您在其中持有的信息面臨著廣泛的風險。如果您的企業依賴技術進行關鍵運營和活動，您需要了解這些威脅的范圍和性質。
Types of risks in IT systems
Threats to your IT systems can be external, internal, deliberate and unintentional. Most IT risks affect one or more of the following:
信息技術系統中的風險類型
對您的IT系統的威脅可以是外部的、內部的、有意的和無意的。大多數IT風險會影響以下一個或多個方面:

business or project goals
service continuity
bottom-line results
business reputation
security
infrastructure
Examples of IT risks
業務或項目目標
服務連續性
底線結果
商業信譽
安全
基礎設施
IT風險示例
Looking at the nature of risks, it is possible to differentiate between:
從風險的性質來看，可以區分以下幾種風險：

Physical threats - resulting from physical access or damage to IT resources such as the servers. These could include theft, damage from fire or flood, or unauthorised access to confidential data by an employee or outsider.
Electronic threats - aiming to compromise your business information - eg a hacker could get access to your website, your IT system could become infected by a computer virus, or you could fall victim to a fraudulent email or website. These are often of a criminal nature.
Technical failures - such as software bugs, a computer crash or the complete failure of a computer component. A technical failure can be catastrophic if, for example, you cannot retrieve data on a failed hard drive and no backup copy is available.
Infrastructure failures - such as the loss of your internet connection can interrupt your business - eg you could miss an important purchase order.
Human error - is a major threat - eg someone might accidentally delete important data, or fail to follow security procedures properly.
物理威脅——來自對IT資源（如服務器）的物理訪問或損壞。這些可能包括盜竊、火災或洪水造成的損失，或雇員或外部人員未經授權訪問機密數據。
電子威脅-旨在損害您的業務信息-例如黑客可以訪問您的網站，您的IT系統可能會被計算機病毒感染，或者您可能成為欺詐性電子郵件或網站的受害者。這些通常是犯罪性質的。
技術故障——如軟件錯誤、電腦死機或電腦組件完全失效。技術故障可能是災難性的，例如，您無法檢索故障硬盤上的數據，并且沒有可用的備份副本。
基礎設施故障-如您的互聯網連接的丟失可能會中斷您的業務-如您可能會錯過一個重要的采購訂單。
人為錯誤-是一個重大威脅-例如有人可能會意外刪除重要數據，或未能按照安全程序正確。

How to manage IT risks?
Managing various types of IT risks begins with identifying exactly:

the type of threats affecting your business
the assets that may be at risks
the ways of securing your IT systems
如何管理資訊科技風險？
管理各種類型的IT風險首先要準確識別：

影響您業務的威脅類型
可能存在風險的資產
保護您的IT系統的方法