A review of the IRS Cybersecurity Program gets mixed results.
November 13, 2020
The Treasury Inspector General for Tax Administration (TIGTA) recently evaluated this program against the 2014 Federal Information Security Modernization Act (FISMA). Of five IRS functions tested, two (risk identification and detection of cybersecurity events) were deemed ineffective. One notable weakness was the need to “improve on tracking and reporting on up-to-date inventories over hardware and software assets.” TIGTA added that until compliance with FISMA requirements is reached, “taxpayer data could be vulnerable to inappropriate and undetected use, modification, or disclosure.” Here’s the report: https://bit.ly/2IwGXgU