The head of the VA reported that the stolen laptop with veterans’ personal information on it had been recovered.
If, as it appears, the data has not been compromised then this is good news for vets. However, I don’t see how it lets the VA off the hook for their shoddy data security practices.
They don’t need to forbid teleworking, they simply need to implement policies and practices to protect data. Some of these practices will include technology, some will include behavioral changes. All will include an awareness of security implications on the part of all who access or transport data.