Research Information Security
The ORO Research Information Security (RIS) Workgroup’s oversight activities are designed to foster VA medical facility adherence to laws, regulations, and polices governing information security and privacy in research. To accomplish this, the RIS Workgroup conducts proactive evaluations of VA medical facility Research Information Security and Privacy practices; investigates, or provides oversight of investigations into, suspected lapses in the protection of information security or privacy incidents related to VA research; and provides oversight of VA medical facility efforts to remediate serious or continuing noncompliance in the aforementioned areas.
You may contact the ORO RIS Workgroup via email at ORORISP@va.gov.
Additional Links
National Institutes of Standards and Technology (NIST)
Special Publication 800-53 Revision 5
Security and Privacy Controls for Information Systems and Organizations
https://csrc.nist.gov/publications/detail/sp/800-53/rev-5/final
VA Handbook 6500
Risk Management Framework for VA Information Systems
https://www.va.gov/vapubs/viewPublication.asp?Pub_ID=1255&FType=2
VA Office of Information and Technology
Office of Information Security
Knowledge Service
https://dvagov.sharepoint.com/sites/OITOIS/KnowledgeService/Pages/Home.aspx (Internal VA website)
VHA Directive 1605.01
Privacy and the Release of Information
VHA Privacy Office
https://www.va.gov/vhapublications/ViewPublication.asp?pub_ID=11388
Veterans Health Administration Data Portal
Information about VHA data, policy, resources, and training
https://vaww.vhadataportal.med.va.gov/
(Internal VA website)
