HHS head takes blame for troubled HealthCare.gov site
Kathleen Sebelius also defends security measures taken at the insurance shopping website
IDG News Service - Security problems reported at the U.S. government's troubled HealthCare.gov are overblown because security testing has been ongoing for months, the secretary of the U.S. Department of Health and Human Services said Wednesday.
HHS Secretary Kathleen Sebelius defended security measures at the troubled health insurance shopping website, telling U.S. lawmakers that security measures are in place, despite a CNN report on a department memo Sept. 27 outlining security concerns with the website.
Representative Mike Rogers, a Michigan Republican, questioned if HHS and its contractors were testing new code being added to the website as they try to fix the many technical problems at HealthCare.gov. Many people have been unable to navigate the website, launched as part of health insurance reforms under the Affordable Care Act, commonly called Obamacare, or to complete applications for health insurance during its first weeks.
"Have any end-to-end security tests been conducted since HealthCare.gov went live?" he asked during a hearing of the House of Representatives Energy and Commerce Committee. "I can tell you they [have] not, and I'd be interested in why not."
"My understanding is there is continuous testing," Sebelius said. "I will find out what testing is being done. I know they're doing simultaneous testing as new code is loaded." Contractor Mitre is responsible for security testing, she said.
During the often contentious hearing, Sebelius faced tough questions from lawmakers, with some demanding to know who was responsible for the malfunctioning website. Sebelius apologized for the performance of HealthCare.gov, saying she took personal responsibility for the widespread problems with the website, launched this month to help U.S. residents shop for health insurance.
Representative Marsha Blackburn, a Tennessee Republican, called the website rollout a "debacle."
"Hold me responsible for the debacle," Sebelius said.
Blackburn pointed to error messages on HealthCare.gov over the weekend and again Wednesday morning. The website is one of the main ways for U.S. residents to shop for new health insurance plans offered through Obamacare.
The recent website outages were due to a problem at cloud services provider Verizon Communications, Sebelius said.
"You're now blaming it on the contractors," Blackburn responded.
Sebelius said she wasn't trying to place blame, but to explain the problems.
Access to HealthCare.gov has been a "miserably frustrating experience," for many U.S. residents wanting to shop for health insurance, Sebelius said earlier in the hearing. "Let me say directly to these Americans, you deserve better. I apologize. I'm accountable to you for fixing these problems."
Sebelius repeated estimates that the website would be working for the majority of users by the end of November. The team working on the site is making improvements every day, she said, but there remains much work to do.
- 18 Hot IT Certifications for 2014
- CIOs Opting for IT Contractors Over Hiring Full-Time Staff
- 12 Best Free iOS 7 Holiday Shopping Apps
- For CMOs Big Data Can Lead to Big Profits
- Slideshow: 5 ways to lock down your mobile device
- Slideshow: 10 mistakes companies make after a data breach
- How to rob a bank: A social engineering walk through
- Which smartphone is the most secure?
If you think getting it right from day one is always what matters, you probably haven't been following technology too closely.
- IT Certification Study Tips
- Register for this Computerworld Insider Study Tip guide and gain access to hundreds of premium content articles, cheat sheets, product reviews and more.
- Mitigating DDoS Attacks with F5 Technology
- This document examines various DDoS attack methods and the application of specific ADC technologies to block attacks in the DDoS threat spectrum while...
- The DDoS Threat Spectrum
- Bolstered by favorable economics, today's global botnets are using distributed denial-of-service (DDoS) attacks to target firewalls, web services, and applications, often simultaneously.
- Defending Against Denial of Service Attacks
- By utilizing end-user interviews, this whitepaper explores a deeper understanding of DDoS defense plans and reveals the knowledge gaps around the Denial of...
- Strategic Solutions for Government IT
- This paper outlines why F5 is the optimum partner to help achieve the levels of security, performance and availability that are vital to...
Top Considerations for Moving to a Cloud Delivery Model for ITSM
Find out whether SaaS-based ITSM is right for you
- Software-as-a-service is more than just a cloud-based delivery model-it's a new approach to service that lets companies optimize utilization of in-house IT resources... All Government IT White Papers
- Pre-Engineered solutions from VCE Simplify Core Infrastructure Implementation In this video, the CTO of Purdue Pharma, a privately held pharmaceutical company explains how Purdue transformed their data center infrastructure with VCE.
- Integrated Infrastructure: Simplify Operations, Speed Deployments and Reduce Costs George Weiss, Gartner Vice President and Analyst, and Praveen Akkiraju, CEO of VCE, provide practical information regarding the various aspects of Integrated Infrastructures...
- Video: 5 Secrets To Scaling Enterprise Apps Watch this video to learn how to successfully scale enterprise apps>>
- Collaboration 2013: Where Mobility Meets Connectivity Mobility and collaboration are quickly converging and users are demanding more capabilities. It's no longer enough to enable file sharing. This Webcast dives...
- Modernizing SAP environments with minimum risk - a path to Big Data Hear from top IDC analyst, Richard Villars, about the path you can start taking now to enable your organization to get the benefits...
- All Government IT Webcasts
Does your organization offer extensive benefits, cool perks, competitive salaries, opportunities for training and advancement? Then get it recognized!
Nominate your company or another deserving organization for Computerworld's 2014 Best Places to Work in IT list now through Dec. 12, 2013.