Shadow IT is becoming a big problem for many organizations. What are some of things your organization do to identify and manage shadow IT?

Applications & Platforms
21.1k viewscircle icon9 Upvotescircle icon26 Comments
Sort by:
CTO in Software3 years ago

Organizations should stive to create a more synergistic environment with business and IT working together towards achieving organizational goals in the most efficient and secure manner. All parties may need to adjust their mindset, but IT should definitely assume a role of a willing participant and active enabler instead of seeking command and control. 

Lightbulb on1 circle icon1 Reply
no title3 years ago

In the financial organizations, it is very difficult especially when the organization has a class structure mindset.

Director Certifications in Education6 years ago

A good balanced article.  If shadow IT is not addressed properly, the risks can outweigh the benefits.

CTO in Software6 years ago

Here's a recent article that may be helpful --> https://www.zdnet.com/article/maybe-shadow-it-isnt-so-bad-after-all-study-suggests/

Lightbulb on1 circle icon1 Reply
no title3 years ago

An excellent article. My experience is that some organizations like financial do not take chances and put policies in place to account for every systems running on their networks. One serious exposure can damage their reputation and expose them to lawsuits which may outweigh any benefits gained from shadow IT.<br>

CIO in Education6 years ago

I agree with Midhat. Embrace it as a form of staff augmentation and see if you can get alignment with your vision, mission, practices.

Director of Information Security Operations in Consumer Goods6 years ago

Casb

1 Reply
no title6 years ago

CASB are amazing tools aren't they? the functionalities and features are really impressive.<br>

Content you might like

What are the biggest technical challenges preventing organizations from being able to use their existing data to enable digital transformation?

Finding data and putting it to good use13%

Controlling the security and privacy of data45%

Understanding how data is currently being used20%

All of the above19%

None of the above1%

View Results

What's your most indispensable cloud infrastructure tools to use in addition to what you get from GCP, AWS, Azure?

HashiCorp (Terraform, Vault, Packer, etc.)22%

Cloud infra automation (Ansible, Puppet, Chef, etc.)56%

APM (Datadog, AppD, SignalFX, NewRelic, etc.)10%

Others?10%

View Results

Thoughts on self-healing applications? Any approaches or tools that look promising to you?

Does someone have advice on how they have balanced the risk/reward as it relates to introducing Open-Source Software to organization? My org is dipping its toe into the OSS world and the architecture and risk governance teams are looking to get ahead of these requests by coming up with policies and standards for OSS technology being brought into our environment. To clarify, this is not for software development and CI/CD pipelines, SDLC etc. This is for installing solutions that already exist out there (Zabbix, GreyLog, Prometheus etc.) into the organization's environment. We are looking to provide a balance on the obvious risk with the ability to move fast (like everyone else now).

AI and Research in Marketing and Communications: How Are You Ensuring Quality and Truth Over Speed? As AI becomes embedded in our day-to-day marketing operations, from customer insight to content strategy, it’s clear we’re gaining speed and scale. But are we sacrificing veracity and quality of output in the process? One of the biggest challenges I'm seeing is the rise of hallucinated content in AI-generated research.   - How do we ensure AI systems are surfacing trustworthy, contextually accurate, and well-sourced information? - Are we building enough verification layers into our AI-driven content and research workflows? - And how are you educating teams (and execs) to challenge AI outputs, rather than accept them at face value? - What frameworks, tools, or governance models have you adopted to maintain integrity and depth in AI-led research and insight creation? - Have you had success (or struggles) balancing speed vs. substance in AI-powered strategies? Your thoughts, examples, and recommendations would be incredibly valuable in helping others try to navigate this shift responsibly.