“There was, unfortunately, some bleak news out of the Department of Health & Human Services, (HHS) Office of the Inspector General (OIG) recently. The OIG recently released the results of a performance audit of the HHS’ compliance with the Federal Information Security Modernization Act of 2014 (FISMA)…”
“Although the report concluded that there were some improvements over previous years, the audit concluded that HHS’ information security program was ‘Not Effective.’”
“In the crucial area of data protection and privacy, the report outlined the following findings…” Read the full article here.
Source: HHS Information Security Program Deemed ’Not Effective’ – April 25, 2019, National Law Review.