Artificial Intelligence & Machine Learning , Audit , COVID-19

Panel Discussion: Tackling the Shadow IT Challenge

Ways to Mitigate Risks During COVID-19 Crisis
From left: Pankaj Dikshit, GSTN; Uday Deshpande, L&T Global; and S.V.Sunder Krishnan, Reliance Nippon Life Insurance Co.

To deal with the problem of “shadow IT” during the COVID-19 pandemic, organizations should put in place redefined compliance and governance policies, take a multilayered security approach and adopt a security framework to prioritize risks, a panel of three experts advises.

See Also: The State of Organizations' Security Posture as of Q1 2018

Pankaj Dikshit, senior vice president, technology and risk, at Goods and Services Tax Network, which provides IT infrastructure and services to the central and state government and taxpayers, says the problem of shadow IT is more pronounced in newer organizations that lack proper governance structure.

“With mature organizations, we have a governance structure in place,” he says in the panel discussion hosted by Information Security Media Group. “They are able to see this through and ensure that the policies which are already in place are implemented.”

Uday Deshpande, CISO at the manufacturer L&T Global Group of Companies, says organizations can take several steps to detect shadow IT at the web layer, proxy layer or endpoint layer. “In every layer, you can have those monitoring and detecting technologies,” he says.

S.V.Sunder Krishnan, chief risk officer at Reliance Nippon Life Insurance, notes that although businesses typically categorize risks as high, medium and low, “sometimes these medium and low risks can spring surprises.”

In this video panel discussion, the three experts address:

  • How enterprises need to tackle the “shadow IT” challenge;
  • The need to re-define security and governance policies;
  • Why monitoring and visibility into network traffic are critical.

Dikshit, senior VP-technology and risk, has led the digital transformation rollout at GSTN, which included the largest tax digitization, a project that needed a constitutional amendment by India’s parliament.

Deshpande CISO at L&T, has more than 20 years of experience leading global information security programs, enterprise risk management, and compliance projects.

Krishnan chief risk officer at Reliance Nippon Life Insurance Co., is responsible for overseeing risk management, internal audit, and compliance functions.

Suparna Goswami, associate editor at ISMG, contributed to this report.


About the Author

Geetha Nandikotkur

Geetha Nandikotkur

Vice President - Conferences, Asia, Middle East and Africa, ISMG

Nandikotkur is an award-winning journalist with over 20 years of experience in newspapers, audiovisual media, magazines and research. She has an understanding of technology and business journalism and has moderated several roundtables and conferences, in addition to leading mentoring programs for the IT community. Prior to joining ISMG, Nandikotkur worked for 9.9 Media as a group editor for CIO & Leader, IT Next and CSO Forum.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing careersinfosecurity.asia, you agree to our use of cookies.