The IT risks to an organisation are centred around the confidentiality, integrity and availability of the data within the organisation. You need to ensure that no one can access data that they are not authorised for. You also have to ensure that when you do access data that it is the same as it was when you stored it. And you need to make sure that it is available, and you can access it when you need to.
There are risks to data that can damage an organisation through lost time, money and reputation.