Tuesday, May 23, 2006

Involved, Or Coincidence?

Hey Folks,

I remember hearing this story yesterday. I remember my first thought was, "You cannot tell me the employee was NOT involved". Lets look at this a little more closely.

The story goes like this. A mid level data analyst had taken sensitive personal information on 26.5 million U.S. veterans, including Social Security numbers and birth dates, home to their privet residence. The reason? The information was on their laptop because they were working on a department project. Then, for whatever reason, and by coincidence, their home just happened to be robbed. This happened in suburban Maryland folks.

The information involved mainly, but not exclusively, those veterans who served and have been discharged since 1975, according to VA Secretary Jim Nicholson. But data of veterans discharged before 1975 who submitted claims to the agency may have been included. Also there may be a possibility that some information on the veterans' disabilities may have been taken.

Now of course the damage control has started. Calls for tighter security have begun.

Nicholson said "It's highly probable that they do not know what they have" and he added "We have decided that we must exercise an abundance of caution and make sure our veterans are aware of this incident."

Well they do now Mr. Nicholson. I heard it for two days. You’ve been on the news telling everyone. Instead of exercising an "abundance of caution" AFTER the data was lost, would it not make more sense to do this BEFORE. You know, to make sure that it NEVER happened?

Bob Wallace, executive director of Veterans of Foreign Wars, and Ramona Joyce, spokeswoman for the American Legion, echo this sentiment. They are both calling for the VA to be held accountable.

Mr Wallace said, "This was a very serious breach of security for American veterans and their families." He added, "We want the VA to show leadership, management and accountability for this breach."

What breach Mr. Wallace? Did this employee have permission to take this information home since they were working on a "department project?". If the employee did, then there is no breach. Just stupidity.

Mrs Joyce said, "In the information age, we're constantly told to protect our information. We would ask no less of the VA,"

This is true. But no one is questioning the VA’s computer security. The employee took the information home.

Now I admit, the first thing I thought of was "Am I the only one that sees this as a little odd?" Maybe a little bit to coincidental. According to the FBI however, the residential community had been a target of a series of burglaries. They say they do not believe the employee was involved.

The politicians are jumping on this as well. They want the problem fixed. Senator Kerry is calling for someone to be fired. You think?

I’m sorry folks. The coincidence is just a little to much for me to take. This employee not only needs a more thorough investigation, but without a doubt needs to be fired.
Peter

No comments: