Shadow IT

I. Formal Definition

Software, services, or infrastructure procured and operated by lines of business outside the formal IT or procurement governance perimeter. Shadow IT produces waste through duplicate purchasing, missed volume discounts, and unmanaged renewals. It also creates security and data residency exposures. The federation defines shadow IT as any vendor relationship of more than five hundred dollars per month not registered in the procurement register or the SaaS spend system. Shadow IT discovery and onboarding into governance is a quarterly metric under UFMS-001:2.4(f).

II. Etymology

A coinage of late twentieth century enterprise IT discourse; the metaphor of shadow describes activity outside the lit perimeter of formal governance.

III. Federation Usage

Federation members run shadow IT discovery against expense report and AP feeds quarterly. Discovered tools are onboarded into governance or formally rejected. Shadow IT spend is reported under MEV-Annex:3.2 as both a waste line and a security risk indicator.

IV. Related Terms

• license-waste
• seat-sprawl
• capability-waste
• untagged-spend

V. Authoritative Citations

• UFMS-001:2.4UFMS Article II - Shadow IT
• MEV-Annex:3.2MEV Annex III - Shadow Reporting

VI. Citation in BibTeX

@misc{ifo4_glossary_shadow_it,
  title        = {{Shadow IT}},
  author       = {{IFO4 Federation Editorial Board}},
  howpublished = {{IFO4 Federation Glossary, slug \texttt{shadow-it}}},
  year         = {2026},
  url          = {https://ifo4.org/glossary/shadow-it},
  note         = {Category: Waste; key: ShadowIT}
}

VII. Challenge This Definition

Federation members and accredited practitioners may challenge any entry under TGS-002:1.7. Filed challenges are routed to the editorial board, triaged into the revision register, and resolved in writing on the public docket. The slug remains stable through any revision.