The Department of Veterans Affairs (VA) houses massive amounts of data on thousands of veterans all over the country. Furthermore, the Veterans Health Administration (VHA) is considered the largest integrated healthcare system in the United States. So when it comes to the topic of cybersecurity in the VA, there’s a lot at stake. Is enough being done to protect important data?
Security Weaknesses Abound
Each year, the VA conducts a Federal Information Security Modernization Act (FISMA) audit and publishes some of its key findings in a publicly available report. The objective of this report is to determine the extent to which the VA’s information security practices comply with FISMA requirements.