[ISN] VA faces major hurdles to comply with FISMA, audit finds

From: InfoSec News <alerts_at_private>
Date: Thu, 18 Mar 2010 00:50:45 -0600 (CST)

By Alice Lipowicz
March 17, 2010

Despite a major improvement in cybersecurity, the Veterans Affairs 
Department still has "significant" obstacles to overcome to meet federal 
cybersecurity standards, according to a new report released by the VA's 
Office of Inspector General.

According to a summary of the report, the VA "continues to face 
significant challenges in complying with the requirements of FISMA due 
to the nature and maturity of its information security program. In order 
to better achieve the FISMA objectives, the department needs to focus on 
several key areas."

The new fiscal 2009 report is a summary of the VA's compliance with the 
Federal Information Security Management Act (FISMA) and was prepared by 
the Deloitte & Touche LLP independent accounting firm. The IG released 
the summary March 4. The full report isn't being released to the public 
because it is considered sensitive information. The report summary did 
not include a response to the criticism from VA officials.

The VA a year ago had received much-improved FISMA ratings from the 
Office of Management and Budget.


Register now for HITBSecConf2010 - Dubai, the premier 
deep-knowledge network security event in the GCC, 
featuring keynote speakers John Viega and Matt Watchinski! 
Received on Wed Mar 17 2010 - 23:50:45 PDT

This archive was generated by hypermail 2.2.0 : Wed Mar 17 2010 - 23:59:37 PDT