How can organizations control the proliferation of shadow IT?

659 viewscircle icon4 Comments
Sort by:
Senior Enterprise Architect, Application Consulting in Healthcare and Biotech4 years ago

1. Require compliance education.  Risk of IP and PII leakage cannot be tolerated.

2. Monitor spend.

3. While you cannot block shadow IT entirely, you can encourage use of IT -managed services with a) easy automated provisioning, b) low-code application development and integration tools, and c) IT-certified images and databases with built in security and monitoring.

Lightbulb on2
CIO in Consumer Goods4 years ago

I understand that there are two ways
- giving all necessary tools the the users
- locking any other non authorized tool

Security should be the must

Lightbulb on2
VP, Chief Security & Compliance Officer in Software4 years ago

I don't know if we can control it versus automate it. During a recent conversation today, I wondered, "Why did we go down this path?" I think we need more automation in place when things are coming in that are not the best-designed to help steer them down a path versus us having to run a manual intervention. That's my perspective out of clear frustration.

Lightbulb on2
Head of Security and Compliance in Software4 years ago

With cloud native companies and all the open access, shadow IT can easily become a big problem because at the click of a button, you can hook up a new service and every department in the company is ready to consume it. How do you control that kind of proliferation? It requires education and training. You have to continuously communicate to people when they do these things that they must not step on anything that might get them into bigger trouble, even by mistake.

Lightbulb on2

Content you might like

It's at the top of my list32%

It's on my radar53%

It's not a focus right now15%

Honestly, I haven't thought about it

View Results

Domain knowledge7%

Authenticity46%

Emotional intelligence30%

Curiosity10%

Decision making3%

Problem Solving3%

View Results