Data protection and privacy continue to be a tremendous focus and risk for IT communities. While companies make great strides protecting data privacy in production application environments, they often overlook implementing similar strategies in non-production environments such as testing, development, and training.

Reliable, safe, and effective mechanisms for securing data at rest require the adoption and rigorous execution of well-defined processes for handling keys used to encrypt data and keys used to safeguard the data encryption keys. Key management is a comprehensive term that covers these controls—including the creation, distribution, deployment storage, transmission, and destruction of keys used to encipher data.

We’d love to hear what your doing to ensure the security and privacy of your data, in production or non-production environments. Leave a comment or send me an email!

In our next, and last, blog in this 5 part series on data archiving we’ll discuss establishing a data retention policy.