Shadow IT—unauthorized applications such as Dropbox or Whatsapp that are used in offices to help workers better collaborate and work—poses an existential threat to an organization's cybersecurity efforts. Employee use of these applications can blur the line between personal and professional technology uses and increase the chances cybercriminals will access an organization's networks through exploiting and hacking their employees.

But shadow IT is not solely a security shortcoming that needs to be secured. It is also one of clearest signs that an organization is failing to support or allow open communication and collaboration between its IT department and other in-house teams. Such interaction is an essential, but often forgotten, competent of any organization's cybersecurity efforts.

Steve Falkin, managing director at HBR Consulting, explained that the use of shadow IT often results when employees, like those in legal departments with “high workloads and long hours, need to work in a manner, or from a location, or in a way that the [organization] may not be supporting.”