Messenger, Mark2018-07-242018-07-242018https://hdl.handle.net/1794/23441Information Technology (IT) Risk Management is critical for large organizations. Lean methodologies describe ways to reduce process waste. Duplicate IT systems and services can be viewed as Lean waste. This paper explores Lean waste reduction in IT to decrease organizational risk. References from foundational works and works in the last ten years are presented. IT managers and security executives can use this work to identify Lean tools that provide value for their organization.en-USCreative Commons BY-NC-ND 4.0-USLeanIT securityRisk managementDuplicate servicesRisk analysisTerminal Project