What is ‘Shadow IT’?
Shadow IT refers to the various web tools informally in use within most organisations. These tools are often chosen without reference to IT or to management in general.
They are often used for all the very best reasons. Your colleagues have work to do, and these tools help them, so they get used. You might know about some because there is a subscription charge, but others might be free.
These tools can be anything from simply keeping lists of tasks to do, sharing information or managing workflows, providing newsletter lists, or recruiting staff. Its endless.
There’s all sorts of web pages out there that your people will be finding useful and will be using.
The question is, do you know what is being used on your behalf?
Even more importantly, do you know who’s got access to them? As your staff come and go, do you know to change passwords or reset user accounts to make sure that no one who has left you (maybe even gone to a competitor) is still able to access your confidential data?
Shadow IT is one of the largest threats to data privacy in organisations today. It’s not necessarily because these sites are going to be hacked, although it’s always possible, but it’s because if you don’t know the tools are in use, then there is no way that you can manage them!
The first step to maintaining this data is to identify them, and that’s why you need new tools that are cloud focused.
If you’re still using the same old security tools that you used prior to the cloud, then you are simply not keeping up and we need to talk!
Here’s a story about what happens if you don’t have this under control: Why you need to know all the cloud services that your organisation uses – IT Solutions and Managed Services (new.kinetics.co.nz/)
Shadow IT is part of our 10-point cyber-security check list
While there is no single layer of technology that can guarantee you will be safe from hackers, you can reduce your risk by adding layers of protection. How many of our 10-point check list are in place for you?
Are you maximising your technology investment?
Are you maximising your technology investment? When you last made a significant IT investment, you had a clear understanding of why you made it and the return you were seeking to achieve. You might even have had to justify it to a board and make various assurances...
IT is more than silicon – have you ever stress tested the human side of your I.T?
I.T. is more than silicon - have you ever stress tested the human side of your I.T? Every chain relies on every link, and the stronger each link, then the stronger the chain - hence the saying about the weakest link. Your IT chain has people - we need to think...
Are the appropriate IT Governance controls in place to protect your business value?
Are the appropriate IT Governance controls in place to protect your organisation? In most organisations, IT has grown organically, meeting business needs as they arise. Those demands have come through thick and fast from almost all areas of the organisation's...
Are you meeting your obligations to shareholders/stakeholders?
Are you meeting your obligations to shareholders/stakeholders? Until relatively recently an organisation's board typically only got involved with IT when the management wanted to proceed with a major capital investment - a system refresh, new software or a similar...
What to look out for in Windows 11
Whether we like it or not, Windows 11 has been putting in an appearance on many of our machines. For some of us, it is exciting to get a shiny new version of Windows. The potential is compelling. For others of us, we just want to get through our work and we don't...
10 IT Questions every Law Firm should be asking about their IT
Is IT Critical To Your Law Firm? From managing matters to productivity, from Deeds and archines to Precedents and Documents, Collaboration and Filing... Law Firms RELY on IT. Here are the key questions every FIRM should be able to answer about their IT...
Is the partnership doing enough to get the cyber-security cost/risk balance right?
Cyber-security protection can feel like an unending cost.You'll already be aware that the bad news is - no matter how much you do, there is always more that can be done, and no promises that any of the steps you take will make your practice 100% safe. We keep...
Is your IT strategy meeting the business needs of your partnership
There’s a saying that goes “A goal without a plan is a wish." With that in mind, do you have an IT Strategy? Is it aligned with your practice's business plan? The reason this is important is that it allows you to make better decisions and be more proactive with your...
Does your firm have the right relationship with your IT provider?
Regardless of whether your IT provider is your in-house IT team or a trusted business provider, do you have the right relationship with them? The right IT provider will ask "WHY" long before they ask "WHAT" and will be focused on proactively adding value to your...
Does your firm have an appropriate Data Privacy Policy?
Data Privacy is now a hot topic in NZ. As a law firm, you will be more aware of the legislation than us, but we have been astonished that not every firm seems to understand the ramifications for their own work product. You will know what is driving our concern:...