Why Govern Cloud File Storage? Shadow IT

e-Share Blog

Here is an excellent article about departmental or so-called Shadow IT today.

Shadow IT along with direct hacking and third-party breaches, it is one of the top three threats to corporate data.

Shadow IT is defined as “systems, software, or applications that individuals in an organization use on a regular basis without the knowledge of executive leadership or the IT department.”

The article claims it “represents one of the biggest cybersecurity risks on the horizon” because central IT and security can’t “protect gaps that it doesn’t know exist”. The author notes cloud file storage is particularly problematic, because after all – that’s where most of the most sensitive data a user can upload into cloud storage in a single action.

To remediate the risk of that going wrong, the key is to apply governance: “establishment of internal policies and procedures designed to educate employees about the dangers of shadow IT usage, and potentially establish penalties should they do so. This could cover areas from the use of third-party cloud storage services and USB devices to establishing procedures for handling company data on their mobile devices”

The article goes on to note that training is essential. In our view, it’s more important to take centralized controls. Platforms like e-Share can be used to provide users with a single view of cloud storage, and surface activity and risk across the organization to administrators. Policies can be centralized, regardless of how they’re invoked – from the web, email or enterprise collaboration apps of all kinds. As can mandatory use of encryption and sophisticated key management, or restriction to corporate only devices.

e-Share - Devices

Learn more about how e-Share can provide the governance layer that protects your organization from Shadow IT and “app sprawl” here: https://www.e-share.us/compliance-and-governance

The Mission Takes Priority

e-Share Blog

Sharing and collaborating with external parties is an essential business activity.

How else would you drive value via strategic outsourcing and/or the network effect? If you want your auditor to make sense of your financial reports, they’ll need to see them, at least. The problem is legacy sharing solutions don’t support external collaboration effectively. They likely require on-premises hardware and/or installation of software or plug-ins by recipients.

Those things are either not possible, or take forever.

Current cloud alternatives are either blocked or configured to disable guest access and anonymous sharing in most large or regulated enterprises – simply because they lack the fine-grained controls required for compliance.

At best, these platforms securely deliver a copy. Let’s hope you sent it to the right person.

The lack of tools for external collaboration can lead to trouble in the form of non-complaint sharing. As this excellent ComputerWeekly article “Despite failings, exec appetite for secure collaboration growing” points out:

“Top business decision makers are more reckless than ever with company data, but the appetite for secure collaboration tools is growing!”

Why would they make career limiting moves to share data? The answer is that the mission takes priority! But it’s not necessary. The survey quoted in the article makes it clear that collaboration tools are here to stay:

92% of respondents agreeing that collaboration tools are the best communication solutions to offer employees for work communication

But:

83% said it would be useful to be able to extend a company’s secure communication infrastructure to business partners and customers

Because, as noted, they don’t cover it today. They’re optimized for internal sharing.

Teams disabled

e-Share’s Trusted Sharing is fully integrated with the collaboration tools the enterprise already uses – like O365, MS Teams and GSuite. It’s 100% enterprise class, operating under your company’s sub-domain, with your certificates, brand logo and colors. Sharing notifications will be delivered, and not quarantined, as a result. Employees access the service via SSO with automatic provisioning, and your admins are in total control with centralized, policy-based controls plus searchable audit trail and on-demand reporting and analytics.

e-Share - Policy feature

Register for a demo to see how your company can enable sharing as a strategic weapon and put a stop to risky, shadow-collaboration efforts. Or read about how a huge financial services firm moved from “no cloud” to “cloud first” using e-Share…

E-Share Secure External Collaboration Trials Now in MS AppSource!!

e-Share Blog

e-Share is proud to announce that our Secure External Collaboration Trial is now available in the Microsoft AppSource!

You can read the announcement and see some of the other new arrivals on the AppSource blog: https://appsource.microsoft.com/blogs/what-s-new-june-16-30-apps-to-expand-the-capabilities-of-dynamics-365-and-more (scroll down to the “Improve collaboration” section.)

Among other things, the trial includes:

Check out a screenshot of the branded experience:

E-Share Secure External Collaboration Trials Now in MS AppSource!!

BTW, e-Share has similar features for users of GSuite, MS Teams and Slack. We can have your organization up and running in hours, if you like. Contact us to learn more.