Risk is identified in project management literature as an important factor influencing IT projects success, and it is relevant for both academic and practitionersn#8217; communities. The paper presents the past and current approaches to risk management in IT projects. The objective of this paper is to compare the different approaches and relate them to existing practices. Project management literature and practice have brought different approaches to risk management, and as a result, many projects ended in failure. We present how risk management is considered in the literature, and we compare the main two approaches: the evaluation approach and the management approach. The contingency approach does not consider risk management to be a specific process as it is an embedded process in the other project management processes. Then, we present the main practices in risk management. The methodology applied is based on documentary study review and analysis of the concepts used by the literature. We analyzed the literature published between 1978 and 2011 from the main journals for IT project management and found out that the essence of project management is risk management. The risk management practices have a considerable influence on stakeholdersn#8217; perception of project success. But, regardless of the chosen approach, a standard method for identifying, assessing, and responding to risks should be included in any project as this influences the outcome of the project.