HHS head takes blame for troubled HealthCare.gov site
Kathleen Sebelius also defends security measures taken at the insurance shopping website
IDG News Service - Security problems reported at the U.S. government's troubled HealthCare.gov are overblown because security testing has been ongoing for months, the secretary of the U.S. Department of Health and Human Services said Wednesday.
HHS Secretary Kathleen Sebelius defended security measures at the troubled health insurance shopping website, telling U.S. lawmakers that security measures are in place, despite a CNN report on a department memo Sept. 27 outlining security concerns with the website.
Representative Mike Rogers, a Michigan Republican, questioned if HHS and its contractors were testing new code being added to the website as they try to fix the many technical problems at HealthCare.gov. Many people have been unable to navigate the website, launched as part of health insurance reforms under the Affordable Care Act, commonly called Obamacare, or to complete applications for health insurance during its first weeks.
"Have any end-to-end security tests been conducted since HealthCare.gov went live?" he asked during a hearing of the House of Representatives Energy and Commerce Committee. "I can tell you they [have] not, and I'd be interested in why not."
"My understanding is there is continuous testing," Sebelius said. "I will find out what testing is being done. I know they're doing simultaneous testing as new code is loaded." Contractor Mitre is responsible for security testing, she said.
During the often contentious hearing, Sebelius faced tough questions from lawmakers, with some demanding to know who was responsible for the malfunctioning website. Sebelius apologized for the performance of HealthCare.gov, saying she took personal responsibility for the widespread problems with the website, launched this month to help U.S. residents shop for health insurance.
Representative Marsha Blackburn, a Tennessee Republican, called the website rollout a "debacle."
"Hold me responsible for the debacle," Sebelius said.
Blackburn pointed to error messages on HealthCare.gov over the weekend and again Wednesday morning. The website is one of the main ways for U.S. residents to shop for new health insurance plans offered through Obamacare.
The recent website outages were due to a problem at cloud services provider Verizon Communications, Sebelius said.
"You're now blaming it on the contractors," Blackburn responded.
Sebelius said she wasn't trying to place blame, but to explain the problems.
Access to HealthCare.gov has been a "miserably frustrating experience," for many U.S. residents wanting to shop for health insurance, Sebelius said earlier in the hearing. "Let me say directly to these Americans, you deserve better. I apologize. I'm accountable to you for fixing these problems."
Sebelius repeated estimates that the website would be working for the majority of users by the end of November. The team working on the site is making improvements every day, she said, but there remains much work to do.
This pilot fish is a contractor at a military base, working on some very cool fire-control systems for tanks. But when he spots something obviously wrong during a live-fire test, he can't get the firing-range commander's attention.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Reduce federal infrastructure risk with compliance management and situational awareness
- IBM continuous monitoring and management solutions deliver real-time situational awareness to help federal agencies understand vulnerabilities, and protect the infrastructure.
- Top 3 Myths about Big Data Security : Debunking common misconceptions about big data security
- Big data represents massive business possibilities and competitive advantage for organizations that are able to harness and use that information. But how are...
- Magic Quadrant for Data Masking Technology
- IBM is a leader in Gartner Inc's Magic Quadrant for Data Masking Technology. Read the full report to learn about IBM.
- Best Practices for Securing Hadoop
- Historically, Apache Hadoop has provided limited security capabilities. To protect sensitive data being stored and analyzed in Hadoop, security architects should use a...
- Top Tips for Securing Big Data Environments: Why Big Data Doesn't Have to Mean Big Security Challenges
- Organizations must come to terms with the security challenges they introduce. As big data environments ingest more data, organizations will face significant risks... All Government IT White Papers
- What should I look for in a Next Generation Firewall? SANS Provides Guidance With so many vendors claiming to have a Next Generation Firewall (NGFW), it can be difficult to tell what makes each one different....
- Why Are Customers Really Deploying an NGFW? It seems every IT Security expert is talking about the NGFW, but what are people really doing? This webcast covers 5 real-world customer...
- Charting Your Analytical Future - "Making predictive analytics part of your business processes" Webinar This session will show how predictive analytics can be used throughout the organization by anyone looking for answers and how organizations can make...
- On-demand webinar - 7 Keys to Service Catalog Implementation Success Watch this webinar to learn 7 crucial keys to make your service catalog a success!
- Transform Your IT Service Management Watch this webinar, to learn how EasyVista can increase IT productivity & efficiency and deliver streamlined & integrated IT Service & Asset Mgmt.
- All Government IT Webcasts