The chief information security officer at CMS (which runs Healthcare.gov), determined that Healthcare.gov was too insecure and recommended that it not go live. As usual, political considerations took priority over reality and she was overruled.
And the security failings continue to be serious:
A top HealthCare.gov security officer told Congress there have been two, serious high-risk findings since the website’s launch, including one on Monday of this week, CBS News has learned.
Teresa Fryer, the chief information security officer for the Centers for Medicare and Medicaid Services (CMS), revealed the findings when she was interviewed Tuesday behind closed doors by House Oversight Committee officials. The security risks were not previously disclosed to members of Congress or the public.
Well, of course they didn’t disclose the problems to Congress! Literally their entire effort has been organized to avoid disclosing problems to Congress.