VA to certify project security

VAnguard June/July 2001

The new cybersecurity chief at the Department of Veterans Affairs said program managers will be asked to sign a contract certifying that they have installed security protections with every project they build.

Bruce Brody, associate deputy assistant secretary for cybersecurity, said the new policy creates departmentwide security requirements and is necessary because security is often overlooked.

"There's a lot of independent action going on," he said. "It's the renegades. It's the people who can put an uncertified network up there."

A separate telecommuting policy — still in draft stages and due out later this year — will also highlight security issues, Brody said. That policy will require workers who telecommute to use a computer strictly dedicated to VA work, he said. Not long ago, an employee in the Midwest connected to his office using a personal computer and transmitted a virus to VA headquarters.

Featured

  • People
    2021 Federal 100 Awards

    Announcing the 2021 Federal 100 Award winners

    Meet the women and men being honored for their exceptional contributions to federal IT.

  • Comment
    Diverse Workforce (Image: Shutterstock)

    Who cares if you wear a hoodie or a suit? It’s the mission that matters most

    Responding to Steve Kelman's recent blog post, Alan Thomas shares the inside story on 18F's evolution.

Stay Connected