|
WASHINGTON, D.C.-Congressman Allen Boyd (D-North Florida) today praised the recovery of the stolen Department of Veterans Affairs (VA) laptop that contained the personal information of approximately 26.5 million veterans and their spouses. The FBI has reported that there is no evidence that anyone accessed Social Security numbers and other data on the equipment.
"While this is great news for our veterans, this does not undercut the need for improved technology security at the VA," said Congressman Boyd. "The recovery of the laptop is a lucky break for the VA, but if they do not enhance their data security measures, they might not be so lucky next time."
This week, Congressman Boyd, a member of the Military Quality of Life and Veterans Affairs Subcommittee, called on VA Secretary Jim Nicholson to heed past reports of computer security problems and improve the VA's information technology security. Secretary Nicholson testified before the Military Quality of Life and Veterans Affairs Subcommittee in response to the VA data security breach that occurred last month.
Since 2000, the Government Accountability Office (GAO) and the VA Inspector General have issued multiple reports about VA cyber-security problems and the need to upgrade VA information technology security. Also, in four of the past five years, the VA has received an "F" grade on an annual cyber-security review by the House Government Reform Committee. However, the VA neglected to act on these disturbing findings, and Congress failed to call on the VA to improve its data security measures.
"Past reports by the House Government Reform Committee, the GAO, and the VA Inspector General all show that the VA had plenty of warning that their computer security was in jeopardy," said Congressman Boyd. "Had the VA paid attention to any of these findings, the recent data security breach may have been prevented. Congress needs to step up and hold our federal agencies accountable for all types of mismanagement, instead of turning a blind eye like we've been doing the past six years."
Below is the House Government Reform Committee's report on federal computer security grades since 2001.
Federal Computer Security Grades, 2001-2005
Wednesday, March 15, 2006
|
Agency |
2005 |
2004 |
2003 |
2002 |
2001 |
|
Department of Agriculture |
F |
F |
F |
F |
F |
|
Agency for International Development |
A+ |
A+ |
C- |
F |
F |
|
Department of Commerce |
D+ |
F |
C- |
D+ |
F |
|
Department of Defense |
F |
D |
D |
F |
F |
|
Department of Education |
C- |
C |
C+ |
D |
F |
|
Department of Energy |
F |
F |
F |
F |
F |
|
Environmental Protection Agency |
A+ |
B |
C |
D- |
D+ |
|
General Services Administration |
A- |
C+ |
D |
D |
D |
|
Department of Health and Human Services |
F |
F |
F |
D- |
F |
|
Department of Homeland Security* |
F |
F |
F |
|
|
|
Department of Housing and Urban Development |
D+ |
F |
F |
F |
D |
|
Department of the Interior |
F |
C+ |
F |
F |
F |
|
Department of Justice |
D |
B- |
F |
F |
F |
|
Department of Labor |
A+ |
B- |
B |
C+ |
F |
|
National Aeronautics and Space Administration |
B- |
D- |
D- |
D+ |
C- |
|
Nuclear Regulatory Commission |
D- |
B+ |
A |
C |
F |
|
National Science Foundation |
A |
C+ |
A- |
D- |
B+ |
|
Office of Personnel Management |
A+ |
C- |
D- |
F |
F |
|
Small Business Administration |
C+ |
D- |
C- |
F |
F |
|
Social Security Administration |
A+ |
B |
B+ |
B- |
C+ |
|
Department of State |
F |
D+ |
F |
F |
D+ |
|
Department of Transportation |
C- |
A- |
D+ |
F |
F |
|
Department of the Treasury |
D- |
D+ |
D |
F |
F |
|
Department of Veterans Affairs |
F |
F |
C |
F |
F |
|
All Agencies |
D+ |
D+ |
D |
F |
F |
House Government Reform Committee
-30- |
Back to top