- Kindle back orders stretch 3 months at Amazon
- Cisco shutting down between holidays
- Smartphone smackdown: Storm vs. iPhone
- 12 myths about how the Internet works
- Google layoffs: 10,000 jobs being cut
There's IT, and then there's shadow IT.
Shadow IT is all the IT that was neither planned nor approved by anyone but gets chosen, deployed and used by end users. Some see this as grass-roots deployment of cool technologies; some see it as weeds growing from any crack in the IT plan. If you don't build it, they will go find it elsewhere. And even if you build it, if it isn't adequate, comprehensive, flexible and easy to use, they will go find it elsewhere.
In most companies, users will quite comfortably sidestep any IT system that isn't working for them and find their own. Worse, users will seek out externally hosted offerings that they use as consumers and adapt them to business use. What about all the security controls you carefully deployed to protect the business? There's a good chance that users see security controls as bugs and seek external solutions precisely because they are unencumbered by security.
Enterprise users will inevitably make comparisons between the applications that IT serves up and the stuff they use as consumers. Nowadays, for every enterprise application provided by corporate IT there seem to be a dozen Web-based alternatives that are cooler, better designed and can be mashed-up, shared and extended.
Part of the reason for all the hype behind enterprise Web 2.0 is that run-of-the-mill enterprise applications look so bad by comparison! Sure, they have better controls, audit capabilities, backup, security, reporting and workflow. But for most employees these are not "features," they are encumbrances. How do you make sure your employees use approved applications and don't go shopping for their own application infrastructure?
First of all, saying "No" doesn’t help. You can put policies and controls, even penalties and audits in place but users will still seek out unauthorized applications. For years instant messaging was banned in many companies (probably still is in some). Network audits almost always show plenty of "banned" applications running on the network. If you crack down hard, the applications become stealthy (tunneling encrypted IM over HTTPS over port-hopping TCP, or whatever). I personally think that outright bans only serve to further ossify corporate IT by removing competition and allowing mediocre applications to survive. But clearly you don't want a "free-for-all."
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Comments (3)
Indeed - wayward users are signalling displeasureBy Andreas on October 2, 2008, 11:37 amYou're absolutely right, that's a great point. Users going elsewhere is a good sign that you've missed a key requirement or feature. Part of the solution is to incorporate...
Reply | Read entire comment
You are absolutely right - and here's data to prove itBy Anonymous on October 2, 2008, 11:03 amPalo Alto Networks just release an analysis of actual Internet data from 60 large enterprise customers (www.paloaltonetworks.com/press_releases/2008-0916-AUR.html)...
Reply | Read entire comment
Good suggestions at the end...but, you missed oneBy Anonymous on October 2, 2008, 10:16 amYou captured something very important at the top of the article but did not pursue it. "...applications that are not working for them..." Fabulous point! It's...
Reply | Read entire comment
View all comments