Several House members expressed concern today over the Department of Veterans Affairs’ (VA) approach to managing cyber risks and the agency’s cybersecurity strategies, while the agency’s chief information security officer countered that VA cyber programs are on par with those at work in other Federal agencies.
“VA prides itself as being the nation’s largest integrated health care provider. In that role, VA should be at the forefront of addressing many of these risks, and should be a leader in healthcare cybersecurity,” said Rep. Frank Mrvan, D-Ind., chairman of the House Veterans Affairs Subcommittee on Technology Modernization, at a subcommittee hearing today.
“As VA continues the process of modernizing its IT systems to deliver health care, adjudicate disability claims, and provide educational benefits, information security management should be a key component from the onset,” Rep. Mrvan said.
“The subcommittee is still concerned that VA has not done enough to assess risks and develop long term information security strategies,” he said.
Chairman Mrvan cited ongoing challenges within the VA, saying “numerous Inspector General and Government Accountability…
