In accordance to a recent VA Office of Inspector General (OIG) report, the Veterans Benefits Administration ignored to implement suitable audit logs that would identify data security violations in the Veterans Benefits Management System (VBMS).
Previous month, OIG was notified by an anonymous entity that the Veterans Benefits Administration had not integrated proper audit logs in the VBMS, a claims processing system.
Upon investigation, OIG found officers at the Veterans Benefits Administration failed to develop satisfactory system requirements in the VBMS that would ensure that accurate audit logs were made.
Without correct audit logs, Information Security Officers could not effectively identify, report, and react to data security problems in the VBMS, OIG pointed out. The organization also could not track if an employee improperly processed a claim.
OIG founded that the VBMS was not compliant with audit log procedures and regulations after testing the functionality at 2 facilities in Texas and one in Washington. Seventeen VA Regional Office workers were tasked with inappropriately accessing the same-station veteran worker compensation claims in VBMS and Information Security Officers were inquired to review the audit logs.
No comments:
Post a Comment