1.define the purpose and objectives of an IT risk management plan.
2.define the scope and boundary for an IT risk management plan to encompass the seven domains of a typical IT infrastructure.
3.relate identified risk,threats and vulnerabilities to an IT risk management plan and risk area.
4.incorporate the five major parts of an IT risk management process into a risk management plan's outline.
5.craft an outline for an IT risk management plan,which includes the seven domains of a typical IT infrastructure and the five major parts of risk management and risk areas.