Business Cyber security survey

Encryption

  • 2/10 Sections
  • 1 Questions

Does your organization encrypt all emails containing sensitive information (e.g., Personally Identifiable Information (PII), Personal Health Information (PHI), Payment Card Information (PCI)) sent to external parties?

Does your organization encrypt all sensitive information (e.g., PII, PHI, PCI) stored on mobile devices (e.g., phones, tablets, laptops, wearable computers, flash drives)?

Is your organization's sensitive information (e.g., PII, PHI, PCI) stored with cloud service providers (e.g., Carbonite, Google Drive, Dropbox) encrypted?

Does your organization encrypt all sensitive information stored on organization assets (e.g., internal servers, databases, backups, file shares)?

For any encryption implemented for sensitive information is at least 256 bit encryption used?