Risk Management is one of the important processes during IT project development that is often underestimated. Risk Management has four major phases: Risk Identification, Risk Assessment, Risk Response Development, and Risk Response Control. The main product of this process is Risk Management Plan (RMP) document that records the whole phases from Risk Identification until Risk Response Development. In Risk Response Development, the scenarios identified in the RMP are executed to anticipate or avoid the occurrence of risk. The execution of Risk Management with good discipline will increase the possibility that the IT project will be on time, within the scope, and within budget.