TIGTA Report: IRS Computer Security Center Effective, Could Be Better
by AccountingWEB on
By AccountingWEB Staff
The Computer Security Incident Response Center (CSIRC), which is responsible for monitoring the IRS network for cyber attacks and computer vulnerabilities (twenty-four hours, 365 days a year), "is effectively performing most of its responsibilities for preventing, detecting, and responding to computer security incidents," according to a new report publicly released by the Treasury Inspector General for Tax Administration (TIGTA).
"However, further improvements could be made," said Treasury Inspector General for Tax Administration J. Russell George.
While Treasury Inspector General for Tax Administration J. Russell George states that the CSIRC "is effectively performing most of its responsibilities for preventing, detecting, and responding to computer security incidents," he says further improvements could be made.
George noted that:
- The CSIRC's host-based intrusion detection system is not monitoring 34 percent of IRS servers, which puts the IRS network and data at risk.
- The CSIRC is not reporting all computer security incidents to the Department of the Treasury, as required.
- The CSIRC incident response policies, plans, and procedures are either nonexistent or are inaccurate and incomplete.
The TIGTA recommended that the Assistant Chief Information Officer, Cybersecurity, direct the CSIRC to:
- Develop its Cybersecurity Data Warehouse capability to correlate and reconcile active servers connected to the IRS network with servers monitored by the host-based intrusion detection system;
- Revise and expand the Memorandum of Understanding with the TIGTA Office of Investigations to ensure that all reportable and relevant security incidents are shared with the CSIRC;
- Collaborate with the TIGTA Office of Investigations to create common identifiers to help the CSIRC reconcile its incident tracking system with the TIGTA Office of Investigations' incident system;
- Develop a standalone incident response policy or update the policy in the IRS's Internal Revenue Manual with current and complete information;
- Develop an incident response plan; and
- Develop, update, and formalize all critical standard operating procedures.
The IRS agreed with the recommendations, and corrective actions are planned or in process for five of the six recommendations. Although the IRS agreed with the recommendation to correlate and reconcile active servers connected to the IRS network with servers monitored by the host-based intrusion detection system, its proposed corrective actions did not address the TIGTA's recommendation. Specifically, the IRS did not commit to implementing the controls the TIGTA recommended.
- TIGTA Finds IRS Not Fully Compliant
- IRS Needs Better Oversight of Repayment by Tax Cheats (TIGTA Report)
You may like these other stories...
Lois Lerner isn’t a Superwoman, but she’s showing at least as much resilience as Lois Lane.A new report released on March 11 by the House Committee on Oversight and Government Reform, one of several government...
Each tax-filing season poses different challenges for small business owners – from understanding the new tax laws and regulations to preparing new forms and disclosures.But according to Kevin Anderson and Doug Bekker,...
In Denver, state legislators are probably thinking, "Why didn't we think of this earlier?" The state of Colorado's retail marijuana sales (separate from medical marijuana sales) in January alone generated...
Upcoming CPE Webinars
BAR is an acronym for: Boundaries, Authority and Role. This simple tool will provide participants with a solid understanding of leadership essentials to improve their performance.
This material is designed to provide a start-to-finish overview of how to plan and complete high-quality small audits efficiently.
In this session Excel expert David H. Ringstrom, CPA shares numerous techniques that you can use to work with charts more efficiently.
Key Accounting and Reporting Issues for Nonprofits No. 1: Overview and Statement of Financial Position
This material focuses on non-profit organizations organization, accounting and reporting.