What is shadow IT?

Shadow IT refers to the use of information technology systems, applications, devices, or services without explicit approval or oversight from an organization's IT department.

In the context of Microsoft 365, shadow IT often includes:

• Employees creating Teams, SharePoint sites, or Groups without IT knowledge.
• Use of third-party apps connected to Microsoft 365 without vetting.
• External sharing of files and data through unofficial channels.
• Automation or Power Platform workflows created without governance oversight.

How to prevent shadow IT?

Preventing shadow IT requires a combination of policy, technology, and culture:

• Implement self-service provisioning with guardrails so employees can get what they need through approved channels.
• Enable Microsoft Defender for Cloud Apps to discover and monitor unsanctioned applications connected to your environment.
• Apply governance policies to Teams, SharePoint, and Power Platform to control workspace creation and app usage.
• Educate users about approved tools and the risks of unapproved applications.
• Conduct regular audits of app registrations, Teams, and SharePoint sites to detect unauthorized resources.