Documents reveal weaknesses in VA's security controls

Thursday - 12/19/2013, 2:49pm EST

As the Veterans Affairs Department tries to reassure and explain to House lawmakers the steps it's taking to protect veterans' data and agency networks, a new audit shows long-standing holes in the network continue to put veterans' data at risk.

Documents obtained by Federal News Radio show VA failed for the 15th year in a row its consolidated financial statement audit with regard to security controls.

Click on the images below to view the documents and read Jason Miller's exclusive article, VA cyber saga continues as audit shows continued holes in network security.


Subcommittee on Oversight and Investigations letter to VA Secretary Eric Shinseki
(Oct. 22, 2013)

Click to view full letter (6 pages).


Timeline: HVAC O&I Letters/Attachments Sent and VA's Responses

Click to view full timeline.


Veterans Affairs IG letter to Committee on Veterans Affairs
(Nov. 12, 2013)

Click to view full letter.


Veterans Affairs Letter to Subcommittee on Oversight and Investigations
(Nov. 22, 2013)

Click to view full letter (7 pages).