Home / News / GAO Finds Security Loopholes in CMS Healthcare.gov Systems

GAO Finds Security Loopholes in CMS Healthcare.gov Systems

cyber-hack-network-computerThe Government Accountability Office has identified several vulnerabilities in the Centers for Medicare and Medicaid Services’ technical controls for systems that support the federal health insurance marketplace.

GAO said Wednesday it found insufficient administrator privilege restriction, inconsistent security patch implementation and insecure administrative network configuration for Healthcare.gov supporting systems and the Federal Data Services Hub.

GAO reports that CMS did not develop a schedule for security oversight procedures and follow-up corrective actions.

The government watchdog recommends that CMS establish procedures for the oversight of state-based marketplaces and enforce continuous security monitoring for those marketplaces.

Oversight and continuous monitoring work to ensure the security and privacy of data processed through Healthcare.gov, GAO noted.

Check Also

GAO: Air Force to Deploy New Combat Rescue Helicopters to Active Component by FY 2020

The Government Accountability Office has found that the U.S. Air Force intends to start fielding in fiscal 2020 new Combat Rescue Helicopters to replace aging HH-60G Pave Hawk helicopters that have recorded the most flight time when it comes to staff recovery missions. GAO said in a report published Thursday the service will initially deploy the new helicopters to the active component six years ahead of the reserve component and to the Air National Guard by 2027.

Leave a Reply

Your email address will not be published. Required fields are marked *