Are you sure your IT infrastructures are fully qualified, or is it possible that your methodologies missed some vital detail along the way? Perhaps you know you're good at maintaining infrastructure compliance, but your organization is about to reach its operational limits. Either way, it's time for a serious change.
Quality risk management implementation identifies and manages risks; under normal circumstances the risk-based approach to the validation of computerized systems should eliminate the risks to the system, or should at least reduce the risks to a tolerable level. (This tolerable level must naturally be defined prior to the execution of the risk analysis).