Cybersecurity group questions VA legislation
The cybersecurity provisions in a U.S. Department of Veterans Affairs (VA) bill approved by Congress late last week are in some ways too narrow and in others too broad, a cybersecurity group says.
The Veterans Benefits, Health Care, and Information Technology Act, largely focused on veterans' health-care programs, includes a section on information security requiring the VA to report data breaches of any "sensitive" personal information, potentially including breaches where only veterans' names were exposed, said Liz Gasster, general counsel for the Cyber Security Industry Alliance (CSIA), a trade group representing cybersecurity vendors.
[ Read more ]
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.