Republicans jump on HealthCare.gov security

Top Republicans are calling on the Obama administration to share more details about HealthCare.gov’s security after federal investigators reported weaknesses in the site.

Eight GOP committee leaders in the House and Senate wrote to the Centers for Medicare and Medicaid Services (CMS) on Wednesday, raising concerns about the site and accusing the agency of negligence.

{mosads}”These continuing security issues surrounding HealthCare.gov are cause for concern not just by Congress, but for all Americans who have a right to expect that the government will protect their information,” the lawmakers wrote to CMS Administrator Marilyn Tavenner.

The letter continues nearly a year of back-and-forth between the congressional GOP and the Obama administration over the healthcare law’s online enrollment system.

With the next sign-up period less than two months away, CMS says it is working diligently to make sure the site is ready for a rush of users.

The nonpartisan Government Accountability Office (GAO) cast some doubt on its preparedness, however, saying Tuesday that best practices were not always followed during the system’s construction and repair.

“Until it addresses shortcomings in both the technical security controls and its information security program, the Centers for Medicare and Medicaid Services is exposing HealthCare.gov-related data and its supporting systems to significant risks of unauthorized access, use, disclose, modification and disruption,” the GAO’s report stated.

A spokesman for the Department of Health and Human Services said officials have already acted on many of the GAO’s recommendations and that the site undergoes a variety of inspections every day, week and month. 

“Protecting consumers’ personal information is a top priority. When Americans use HealthCare.gov, their data is protected by stringent security measures that adhere to industry best practices and meet or exceed federal standards,” Kevin Griffis said in a statement.

“To continuously raise the bar on the website’s security and meet evolving threats, it requires constant monitoring and re-evaluation. Feedback from the GAO, the department’s Inspector General and outside, independent security experts is part of that process.”

The debate is likely to dominate a House Oversight Committee hearing scheduled for Thursday.

The Republicans’ letter was signed by Sens. Lamar Alexander (Tenn.), Orrin Hatch (Utah), Chuck Grassley (Iowa), Rob Portman (Ohio) and John Thune (S.D.); and Reps. Fred Upton (Mich.), Dave Camp (Mich.) and Darrell Issa (Calif.).