Information technology has become an essential part of the operation of any commercial banks. In turn , data-centre has been required as a critical facility that must be operated at highest level of stability and continuity. This research aimed to examine 8 data-centres of commercial banks located in Bangkok. Case study approach was adopted to investigate risks, risk responses methods and the key factors contributing to those risks. Semi-structured interview was undertaken as the main data collection method, focusing on IT managers and Facility managers of each data-centre. By examining the 8 case studies, the study found that differences of location, building design and feature of data-centre contributed to different threats and risks. Newer data-centre tended to have higher level of TIER design standard than those older ones. Risks response measures were varied by organization ’s policy and type of risk. Measures responding to risk of flood included heightening retaining wall and having mechanical drainage system. Special design for earthquake resistance was found in a few case studies. In addition, all cases had applied building system design standard of TIER as a part of minimizing risk of system failures. Restricted security measure was implemented to prevent risks of intruder and terrorist. The study concluded that the risks concerned banks ‘ data-centre could be categorized into 4 categories: 1) natural disasters – floods and earthquake; 2)security threat; 3)operational failure; 4)pandemic risk. Facility/Building management team had important role in managing those risks.