The work will be developed in EY (formerly Ernst & Young), a multinational professional services firm. The main task will be to talk with customers and provide technological support, verifying and analyzing in any case the risks that may exist. Depending on the cases and goals different patterns will be created: back-ups, clones ...

The current business environment presents many risks for the companies, so it is truly desirable that its administration occupies an overriding place in the companies agenda. The business evolves -and so it does the risks- and at the same time, they try to adapt to the necessities of the customers and the changes in the economy. The capacity of the administrators to anticipate the threads, answer back and to attune continuously depends now, more than ever, on their strengths of administrating the risks. To fulfil the needs of the different companys types an IT risk department that tries to understand and manage all the IT risk requirements is created. IT risk management is the application of risk management methods to information technology to manage the IT risk. These departments aim to manage the risks that come with the ownership, involvement, operation, influence, adoption and use of IT as part of a larger enterprise. This encompasses not only the risks and negative effects of service and operations that can degrade organizational value, but it also takes the potential benefits of risky ventures into account. As a rule, risk is defined as the product of the likelihood of occurrence. In IT, however, risk is defined as the product of the asset value, the system's vulnerability to that risk and the threat it poses for the organization. In a few words, the risks are managed according to an assessment, mitigation and evaluation. This project will be focused on the explanation of the basics, the procedure, the difficulties and the solutions of real cases of auditory and consultancy that is important parts of any IT risk department.