“A new bill would require the Department of Veterans Affairs to hire an outside contractor to assess its cybersecurity operations.”
“The Strengthening VA Cybersecurity Act, introduced by Sens. Jacky Rosen, D-Nev., and Marsha Blackburn, R-Tenn., would give the secretary of Veterans Affairs two months to contract with a federally funded research and development center to perform an independent cybersecurity assessment of between three to 10 high-impact information systems at the VA. That could include on-premise systems, remote or cloud-based systems or mobile applications used by the department to further its mission.”
“In a statement, Rosen cited potential hacking threats from Russia as the U.S. continues to levy sanctions on the country, while Blackburn noted that the VA, which services the medical and health needs for millions of U.S. veterans and active members of the military, has the second-highest IT budget in the federal government but the fifth-lowest cybersecurity budget.”
“’The Department of Veterans Affairs is the largest integrated health care network in the United States, yet it spends less as a percentage of its overall budget on cybersecurity relative to other government agencies,’ Rosen said. ‘This bipartisan bill would help us understand the VA’s cyber vulnerabilities and ensure we protect our veterans’ personal information from malicious cyberattacks.'”
“The center would also be responsible for conducting a broader assessment of the department’s IT security management and an analysis of its ability to defend against a broad range of hacking threats, such as advanced persistent threat groups (APTs), ransomware, denial of service attacks, insider threats, attacks that target the supply chain of the department and more recent threats targeting weaknesses in the remote telework infrastructure that has become more common during the coronavirus pandemic…” Read the full article here.
Source: Proposal requires Veterans Affairs to hire outside contractor to assess cybersecurity needs – By Derek B. Johnson, March 21, 2022. SC Media.