Home / Civilian / GAO Recommends VA to Update Risk Mgmt Policies to Meet Current Security Standards

GAO Recommends VA to Update Risk Mgmt Policies to Meet Current Security Standards

The Government Accountability Office has urged the Department of Veterans Affairs to reevaluate and update its risk management policies to comply with prevailing security standards.

GAO said in a report published Thursday it also recommends VA to create an oversight strategy that can validate the effectiveness of risk management initiatives implemented at Veterans Health Administration locations.

The government watchdog agency discovered multiple VA risk management policies did not include all Interagency Security Committee-established elements of standards including some guidelines on facility security level measurement and facility assessment.

The report noted VA risk management oversight activities also failed to meet aspects of the Standards for Internal Control in the Federal Government and the Office of Management and Budget‘s Circular A-123 regulation which directs agencies to maintain the accountability and effectiveness of programs.

GAO said the lack of a system-wide oversight plan makes variations on medical center approaches unknown and such gaps will prevent VA from knowing if medical centers have enough protection or if opportunities to leverage resources are fulfilled.

Check Also

GSA’s New Pilot Program Aims to Bolster eBuy Marketplace Transparency; Emily Murphy Quoted

The General Services Administration has initiated a new pilot program intended to get more firms to sell products and services on the agency's eBuy federal marketplace. The one-year program would publicly disclose associated, post-award request-for-quote information on FedBizOpps in a move to increase eBuy's transparency, the GSA said Wednesday.

Leave a Reply

Your email address will not be published. Required fields are marked *