Lacking of effective risk management in the process of informatization construction is the origin of informatization paradox. Especially, enterprises don’t take full account of the informatization risk from the height of the strategy, thereby can’t manage and quantify informatization risk comprehensively. Different from existing research which lay particular stress on project, this article based on the perspective of top manager analyzes the risks in the process of enterprise informatization from the levels of strategy and program, and then establishes enterprise informatization process risk control model based on the informatization life cycle, with COBIT as the theoretical platform, so as to improve the competitiveness of enterprises.