Posted on Nov 18, 2019
Information Security: VA and Other Federal Agencies Need to Address Significant Challenges
1.03K
6
2
2
2
0
" in fiscal year 2018, inspectors general (IGs) used a five-level maturity model to rate agency information security policies, procedures, and practices related to the five core security functions— identify , protect , detect , respond , and recover —established by the National Institute of Standards and Technology's cybersecurity framework. VA's ratings were generally consistent with the ratings of other major agencies (see figure) and its information security program was one of 18 agency programs that IGs deemed ineffective."
If you look at the highlights tab of the report page, you will see the VA is poor at detecting security intrusions, and just so-so compared to other Federal agencies in the security standards. Reminds me of them using me as a perimeter guard in boot camp. What do I know about security? They need the best software and management to find out what break-ins happen to their system.
You can also download more detailed reports.
If you look at the highlights tab of the report page, you will see the VA is poor at detecting security intrusions, and just so-so compared to other Federal agencies in the security standards. Reminds me of them using me as a perimeter guard in boot camp. What do I know about security? They need the best software and management to find out what break-ins happen to their system.
You can also download more detailed reports.
Information Security: VA and Other Federal Agencies Need to Address Significant Challenges
Posted from gao.govPosted in these groups: Department of Veterans Affairs (VA) Government Health Computer & Network Security
Posted >1 y ago
Responses: 2
Posted >1 y ago
VA uses a lot of information from external sources. Medical facilities, Veterans Service Organizations, private individuals who are caretakers, the claimants themselves, law firms. All of those are subject to attack and may well pass their viruses (etc) on to VA Systems.
The tricky part is making claims and actions transparent and accessible to Veterans and their advocates without having a system intrusion.
The tricky part is making claims and actions transparent and accessible to Veterans and their advocates without having a system intrusion.
(2)
Comment
(0)
Posted >1 y ago
Thank you for the informative share on the VA
(2)
Comment
(0)
Read This Next