It amazes me how executives ignore news they don't want to hear. We saw this with the Colorado Benefits Management System (see earlier posts) where executives with project oversight responsibility did not act on the written warnings of Maximus, the Independent Verification and Validation contractor, that the project was headed for the ditch. Now we read that US Veterans Administration officials ignored repeated warnings from cybersecurity experts that their security procedures were inadequate. As I'm sure you've read, a VA employee took a laptop home which contained personal information on some 26.5 million veterans and their spouses. The laptop was stolen. Veterans were not notified that they could become victims of identity theft for six weeks! According to an article in the June 14 issue of Computerworld, "The GAO has issued multiple reports about VA cybersecurity problems since 2000, and the VA has received a failing grade in four of the past five years on an annual cybersecurity review by the House Government Reform Committee."
Sorry, I just don't get it.
Comments