ChaptersCircleEventsBlog
Learn how to use annual SOC data to shape stronger FinServ security strategies in 2025. Don’t miss this free webinar session on April 22!

Download Publication

Confronting Shadow Access Risks: Considerations for Zero Trust and Artificial Intelligence Deployments
Confronting Shadow Access Risks: Considerations for Zero Trust and Artificial Intelligence Deployments
Who it's for:
  • IAM professionals
  • Cloud and cybersecurity professionals

Confronting Shadow Access Risks: Considerations for Zero Trust and Artificial Intelligence Deployments

Release Date: 05/06/2024

Working Group: AI Safety Initiative

Shadow Access, a growing concern within cloud computing and Identity and Access Management (IAM), refers to unintended, unauthorized access to systems and data, often intensified by the complexities of modern technological environments. Organizations from small to large often find out the hard way that their previously secure starting point has silently evolved into an unsecure one, the consequences of which are potentially catastrophic. Adding an additional dimension, the increasing prevalence of Artificial Intelligence (AI) introduces new Shadow Access risks, such as unauthorized access, sensitive data exposure, and governance issues.

Zero Trust, centered on the philosophy of “Never Trust, Always Verify,” is positioned as a countermeasure to Shadow Access, advocating for robust authentication and vigilant access control. However, the practical implementation of Zero Trust faces challenges in cloud-native architectures where Shadow Access is prevalent. 

This publication by the CSA Identity and Access Management Working Group delves into these intersections of Shadow Access, AI, and Zero Trust, and underscores the necessity of adapting traditional Zero Trust IAM approaches to the nuances of AI technology.

Key Takeaways: 
  • What Shadow Access is and why it exists
  • What Zero Trust is
  • The impacts of Shadow Access on Zero Trust 
  • What Zero Trust can do to mitigate Shadow Access 
  • The top concerns regarding Shadow Access, AI, and LLMs, including change management, data access visibility, identity verification, content authorization, and more
Download this Resource

Bookmark
Share
Related resources
Zero Trust Guidance For Critical Infrastructure - Korean Translation
Zero Trust Guidance For Critical Infrastructure...
Shadow Access and AI
Shadow Access and AI
Zero Trust Privacy Assessment and Guidance
Zero Trust Privacy Assessment and Guidance
Oracle Cloud Infrastructure Breach: Mitigating Future Attacks with Agentic AI
Oracle Cloud Infrastructure Breach: Mitigating Future Attacks with ...
Published: 04/18/2025
The Evolution of Data Security: From Traditional DLP to DSPM
The Evolution of Data Security: From Traditional DLP to DSPM
Published: 04/18/2025
Zero Trust is Not Enough: Evolving Cloud Security in 2025
Zero Trust is Not Enough: Evolving Cloud Security in 2025
Published: 04/17/2025
From Multiplan to Multimodal: A CFO’s 40-Year Tech Journey into AI
From Multiplan to Multimodal: A CFO’s 40-Year Tech Journey into AI
Published: 04/16/2025
Cloudbytes Webinar Series
Cloudbytes Webinar Series
January 1 | Online

Acknowledgements

Michael Roza
Michael Roza
Risk, Audit, Control and Compliance Professional at EVC

Michael Roza

Risk, Audit, Control and Compliance Professional at EVC

Since 2012, Michael Roza has been a pivotal member of the Cloud Security Alliance (CSA) family. He has contributed to over 125 projects, as a Lead Author or Author/Contributor and many more as a Reviewer/Editor.
Michael's extensive contributions encompass critical areas including Artificial Intelligence, Zero Trust/Software Defined Perimeter, Internet of Things, Top Threats, Cloud Control Matrix, DevSecOps, and Key Management. H...

Read more

Are you a research volunteer? Request to have your profile displayed on the website here.

Interested in helping develop research with CSA?

Related Certificates & Training