Bel Lepe, a former Google software engineer, tells me that it always seemed risky to him that there were apps business users needed and used, but that IT and security teams were unwilling to approve them because of their lack of support for identity standards.
It’s a legitimate issue. According to a Ponemon Institute survey, 52% of organizations have experienced a cybersecurity incident caused by their inability to secure nonstandard apps.
“Security tools have traditionally been built with only security and IT users in mind, but many apps that businesses depend on don’t support security standards,” Lepe said in an email interview. “We refer to these applications as ‘nonstandard apps.’ Nonstandard apps don’t work with enterprise IT and security tools because they lack support for modern identity protocols for automated onboarding and offboarding of users.”
L...
