Having worked for more than one large (1000+) company over the years, I'll just say there are some common-sense security measures that STILL are hard sells. Encryption is beyond that.
Encryption is one that is rightly difficult to get approval for because of the overhead it introduces into administration. You need a support force adequate to the task or you will be crippled.
When the choices seem to boil down to implementing tight security with a large IT/security team to support all the issues or having a tiny team and skipping it, most companies choose the cheap route. Because investors.
The Jedi Master
The anteater is wearing the bagel because he's a reindeer princess. -- my 4 yr old daughter
