The Office of Information and Security is dedicated to protecting VA’s resources, which help us keep Veteran information secure. We lead with security innovation by adopting smart solutions and a robust Zero Trust approach for unmatched cybersecurity. We think beyond traditional defense by deploying dynamic, multi-layered security around our most critical systems and assets. Our teams work with cutting-edge resources to ensure we’re at the forefront of cybersecurity — and that the Nation’s Veterans, their families, and caregivers can go about their days worry-free.
Our office monitors cybersecurity events, scans the network for intrusion attempts, arms our employees against phishing scams, and conducts education and outreach around safeguarding Veteran data.
Some of Our Projects and Accomplishements
- Completed 150 Phishing Assessments (404,663 phishing emails sent) in Fiscal Year (FY) 2023
- Intercepted, logged, and monitored over a trillion potential security events.
- Resolved over 20,000 true positive cybersecurity incidents.
- Blocked millions of malware intrusions and nearly one billion malicious emails such as phishing campaigns.
- Enforced multi-factor authentication across 96% of the organization.
- Managed vulnerabilities at a rate 25% higher than the industry standard.
- Remediated 4,000 medical devices with unsupported operating systems in FY23
- Scan 6,000 IT systems daily for potential threats.
- Ranks as a top-performing federal agency with a 92% total score on Federal Information Security Modernization Act (FISMA) scorecard.
