SANS NewsBites has this about the Veterans Administration and adds some opinion. This is happening after the huge data breach.

A directive from Veterans Affairs (VA) secretary James Nicholson gives the VA CIO the authority to enforce security policies and procedures across the agency; the CIO's authority had previously been limited to "seeking compliance." The directive also requires that sensitive VA data be kept only on VA devices; VA plans to issue guidance regarding the practice of employees using their own computers to do VA work.