OIG Finds that the Department of Veteran’s Affairs has Failed to Meet Several Health IT Security Protocols

The Department of Veteran’s Affairs (VA), has failed to meet several health IT security protocols that are part of the Federal Information Security Management Act and Federal Information Technology Acquisition Reform Act (FITARA). This happened during their efforts to update its Veterans Health Information Systems and Technology Architecture (VISTA).

This all came public knowledge during a hearing held last week when Brent Arronte of the VA gave the Office of the Inspector General’s testimony, stating that VA has failed to meet several required security protocol, as made evident to the high volume of security incidents that have occurred at VA in recent years.

“[T]he Government Accountability Office identified Security of Federal Information Systems as “high risk” and stated that Cybersecurity incidents to systems supporting the federal government and national critical infrastructures have significantly increased over the past eight years,” Arronte explained.

Read More: HealthITSecurity