Electronic Authentication Process Controls Have Been Improved, but Have Not Yet Been Fully Implemented

The Chief Information Officer should prepare a plan of action and milestones to ensure that remaining issues preventing full implementation of the two network monitoring tools are addressed.

The Chief Information Officer should establish a process to adequately test and subsequently monitor enhancements made to application controls until it can be confirmed that the controls are effective.

The Chief Information Officer should ensure that the eAuthentication audit log captures *****2****** in a separate field for all user transactions to allow for tracking and analysis of user activity.

The Chief Information Officer should ensure that IRS policy is met in regards to audit log report generation and review, that actionable events and threshold triggers are kept current, and reports are useful for investigation and response to suspicious activities.