More than half of IT professionals believe their companies are still not entirely clear about current data security requirements as well as regulations imposed by laws such as Sarbanes-Oxley and HIPAA, according to a new research on data security management.