Date Issued
Report Number
2019-20-061
Report Type
Audit
Joint Report
Yes
Participating OIG
Treasury Inspector General for Tax Administration
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
Recommendations
The Chief Information Officer and Chief, Criminal Investigation, should ensure that comprehensive and accurate inventories of information system components are maintained, including the General Support System-1 and Criminal Investigation-2 inventories, that include the level of granularity necessary for tracking and reporting, and implement improved procedures for ensuring that the inventories remain accurate and up-to-date.
The Chief Information Officer and the Chief, Criminal Investigation, should assign expiration dates not to exceed 365 days to firewall policies.
The Chief Information Officer and the Chief, Criminal Investigation, should conduct periodic firewall administrator account audits in accordance with agency policies and procedures.
The Chief Information Officer and the Chief, Criminal Investigation, should ensure that all firewall password settings are configured to expire in accordance with agency policies.
The Chief Information Officer and the Chief, Criminal Investigation, should ensure that IRS Firewall Support personnel responsible for managing the firewall systems obtain write access to key data fields within ******11****** to improve the efficiency and accuracy of firewall inventory key data fields within ******11******.