While most companies are required to encrypt their data, they need to go a step further and ensure that the security
keys cannot be lost or misplaced. Symantec has found that a great deal of progress needs to be
made to improve how businesses handle these security keys.

A recent survey by Symantec has found that a lack of key management and poor technical
development can create problems when it comes to accessing critical data later on. These issues
can result in heavy losses for a company as their IT department spends a great deal of time and
effort retrieving important files and/or lost security keys. One cause is the development of “rogue”
encryption projects completed without initial consultation with the central IT department. Lost
keys and improper communication can lead to serious compliance issues, and the right approaches
should be put in place, taking into account factors such as maintaining consistent systems regardless
of staff turnover. Additionally, companies which are working together will need to implement
encryption systems so that data is accessible by both parties at all times.

For more information on this survey, visit http://www.eweek.com/c/a/Security/Poor-
Encryption-Key-Management-Leads-to-Unrecoverable-Data-Survey-Finds-673838/?
kc=EWKNLENT12022011STR5/

Bob Chaput

CEO at Clearwater Compliance
Bob Chaput is widely recognized for his extensive and in-depth knowledge of healthcare compliance and cyber risk management, and is one of the industry’s leading authorities in healthcare information security today. As a leading authority safeguarding health data, Chaput has supported hundreds of hospitals and health systems to successfully manage healthcare’s evolving cybersecurity threats and ensure patient safety.