All Articles

(Round Table) Shadow IT Risks And Controls : Managing The Unknown Unknowns In Deep & Dark Web

Posted by pritha on December 18, 2019 at 6:30pm

We were happy to participate in a community round table organized by CISO Platform

Key Discussion Points :

What is Shadow IT?
What are the types of Shadow IT?
Practical demo using open source tools
Controls to manage shadow IT risk

Reason Of Risk :

No standardization
Unknown risks
Security breaches
Data leaks

Types Of Risks :

Third party email service
Third party applications – whatspp, box
Unknown assets
Custom applications / individual built applications / scripts
Database
Cloud Buckets, S3
Github ..online code repository
Online Free tools / SaaS
API
Owner change of assets (person has left)
Data in non electronical/ Physical forms
Shadow accounts/privileges
Shared / Leaked / Default / Weak / Written down passwords
Backdoors
IoT
Rogue devices
BYOD
CCTV – source and data destination; set-top box
3rd party
4th party
Supply chain

Buying, IT, Security, Shadow, Uncategorized, product

★

Votes: 0

E-mail me when people leave their comments –

Posted by pritha

Community Head, CISO Platform

You need to be a member of CISO Platform to add comments!

Join CISO Platform

Join The Community Discussion

Top Breaches in Cyber Security in 2025 – upcoming live panel

Posted by Matthew Rosenquist on January 6, 2026 at 12:15pm in Podcast

Weekly CISO Podcast Pick – Why Cyber Risk Fails: What CISOs Should Do Instead

Posted by Biswajit Banerjee on January 8, 2026 at 5:38pm in Blog

Navigating Cybersecurity in 2026: A Deep Dive into Trends, Statistics and Strategies for Enterprises, SMBs & BFSI/NBFCs

Posted by Denise on January 8, 2026 at 3:36am in Blog

Daily Breach Intelligence 26 November 2025 - Dartmouth College has confirmed that its Oracle EBS instance was compromised; New Critical CVE with unauthenticated RCE in broadcast infrastructure..

Posted by pritha on November 26, 2025 at 2:06am in Blog

CISO Platform

A global community of 5K+ Senior IT Security executives and 40K+ subscribers with the vision of meaningful collaboration, knowledge, and intelligence sharing to fight the growing cyber security threats.

Join CISO Community Share Your Knowledge (Post A Blog)

Atlanta Chapter Meet: Build the Pen Test Maturity Model (Virtual Session)

Jan 14, 2026 at 7:30pm to Feb 25, 2026 at 9:00pm UTC+5.5

Online

Description:
The Atlanta Pen Test Chapter has officially begun and is now actively underway.

Atlanta CISOs and security teams have kicked off Pen Test Chapter #1 (Virtual), an ongoing working series focused on drafting Pen Test Maturity Model v0.1, designed for an intel-led, exploit-validated, and AI-assisted security reality. The chapter was announced at …
Created by: Biswajit Banerjee
Tags: ciso, pen testing, red team, security leadership

#xg { position:relative;top:120px; } #xn_bar { top:120px; }

Hello, you need to enable JavaScript to use CISO Platform.

Please check your browser settings or contact your system administrator.