"Quip went to 100 percent of the company in two weeks," Taylor says.
In addition to cloud service providers, line-of-business managers hesitate bringing in the CIO out of fear of being blocked. If CIOs can remove this fear, Barnett says Netskope's research shows business users are willing to work with the CIO to set and enforce policies. After all, they don't want to suffer the blowback from a rogue tech project that puts the company at risk.
To this end, CIOs need to become more like internal consultants to the business, advising business leaders how to adopt a cloud service while still maintaining compliance and security. CIOs can act as a kind of cloud services broker playing a role in admin accounts, contract negotiations, user access rights and other technical details.
Spiceworks Castelino says CIOs can be pivotal in assessing and laying out the risk for each option and then letting the business user decide the course of action. While this wouldn't necessarily take liability off of the IT department, he says, the CIO can ward off trouble as a respected partner in the decision-making process.
"IT can be like a company's general counsel," Castelino says.
Sign up for CIO Asia eNewsletters.