I think the best option for the scenario you describe is to use a form of encryption that does not store the encryption keys in a manner where they are accessible to system administrators. If you're using Microsoft Office 2007, the easiest way to do this is to use Office's built-in encryption feature to password-protect your files. You'll need to share the password with other upper-level executives in an offline fashion. (Remember, if you email it, chances are the network administrator can read your email!)
Also, notice that I specifically said that this option applies only to those using Office 2007. This latest release of Microsoft Office uses the strong AES encryption algorithm to protect data. Earlier versions of Office use a much more primitive algorithm that is easy to defeat.
Dig deeper on Active Directory and LDAP Security
Related Q&A from Mike Chapple, Enterprise Compliance
Social media compliance is not typically considered a big issue for companies, but expert Mike Chapple explains why it should be.continue reading
Metadata tagging is not just for security. Expert Mike Chapple explains how tagging tools can be used to achieve PCI DSS compliance.continue reading
Before using the HIPAA-compliant cloud services from Google, there are some things companies need to know, according to expert Mike Chapple.continue reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.