It is important to be able to manage risks in all kinds of development. The concept risk refers to the probability for the occurrences of negative incidents. The occurrences of negative incidents often imply lower quality of resulting systems, higher costs, delayed delivery, and poorer technical characteristics. Risk management constitutes a strategic and operational tool for maximizing options as well as results of the business. Risk management includes identification, analysis, and handling of risks. Difficulties within risk management are for example the lack of tools and the integration of risk management with the overall system development process. Moreover, the process of risk management is time consuming and it is often hard to decide if all risks have been identified. The objective of this report is to describe difficulties within risk management and suggest how a risk management support should be developed. The work is performed in two parts: development of the risk management process and development of the corresponding computer support. The development of the risk management process, based on ISO/IEC 15 288, is performed iteratively in three steps, which are definition of process, identification of techniques, and evaluation of process. Thereafter, a computer support for the process is developed. The computer support is specified, designed, implemented, and evaluated. The computer support is suggested to be implemented in modules, permitting support for techniques to be included, exchanged or modified independently of other modules.