The House Energy and Commerce Subcommittee on Oversight and Investigation today held a hearing to examine findings from a series of Government Accountability Office audits of information security controls at the Department of Health and Human Services, and discuss HHS cybersecurity roles and responsibilities. Due to the sensitivity of some of the GAO findings, most of the hearing was closed to the public. Witnesses included officials from GAO, HHS and the Centers for Disease Control and Prevention. AHA recently shared with the committee its recommendations for improving the security of legacy medical devices and cybersecurity in the health care and public health sectors.