Cybersecurity

Senate panel votes to boost OPM’s IT budget after hack

by Cory Bennett

A Senate subcommittee on Wednesday approved a funding bill that would boost information technology spending for the agency at the center of the massive recent hacks that have roiled the government.

The bill would allot $264.5 million for the Office of Personnel Management (OPM), which has been struggling to handle the fallout from two damaging cyberattacks that exposed over 22 million people’s sensitive information.

{mosads}That funding level is a $24 million, or 10 percent, increase over the agency’s enacted 2015 budget.

While the raise was $8 million short of what OPM had requested for 2016, the Senate Appropriations Subcommittee on Financial Services and General Government said it approved all requests for IT security improvements at the agency.

“This bill reflects our commitment to putting our country on the path to fiscal responsibility and forcing Washington to tighten its belt just like hardworking American families,” said Sen. John Boozman (R-Ark.), who chairs the subpanel.

The budget bill would also fund a number of other financial oversight, consumer protection and management agencies.

The OPM in recent weeks submitted a revised budget request to Boozman’s subcommittee in the anticipation of the unexpected fees it would incur following the breach.

The agency has promised between 18 months and three years of complimentary credit monitoring services for the 22 million-plus victims.

OPM officials have already inked a $20 million deal with identity fraud protection firm CSID for the 4.2 million people affected by the initial intrusion at the agency.

Sometime in August, the OPM is expected to award a second contract with an outside firm to help notify and provide fraud protection services to the 21.5 million people hit by a second breach of the agency’s security clearance database.

Anticipating the high cost of this second contract, OPM told other federal agencies in a memo this week that they would be expected to contribute to the final bill. The notification caused some grumbling at other agencies.

OPM spokesperson Sam Schumach said it was a necessary step to get protections to breach victims in a “timely and effective manner.”

“OPM is asking each agency to fund a share of the cost of monitoring and protection services approximately proportional to the number of individuals impacted,” he said in a statement. “This strategy was developed in concert with the Office of Management and Budget.”

The full Senate Appropriations Committee will take up the budget bill that funds OPM on Thursday.