check google my friend.

the biggest IT risks in my experience ARE the managers.
They impose impossible deadlines, so corners get cut.
They demand things that can't be done without compromising security, then demand it gets done anyway when that's pointed out to them (then blame the person implementing it for the inevitable problems).

Security is the biggest thing in IT news right now, everywhere you look. One of the dangerous aspects about it is, you can't ever be sure when/where/how it will rear up!

there are lots of things to look at. viruses, network security, system healths, updates etc...

one of the biggest security risks you are going to run into is USERS.
users don't care about the impact of what they do. they will download a bruce willis screen saver that has trojans and then try to hide it (personal experience)..

things to look into:

WSUS to control all windows updates (if windows network) centrally from server

Virus Enterprise solutions (to control all anti-virus operations centrally)

Strong firewall solutions (recommend cisco firewalls, ASA 5500 series are nice but pricey)

Group Policies to control settings and prevent users from accessing things you dont want them to

Strong password policies to prevent cracking

and so on, it goes on for days

check into the hacking exposed books maybe?