U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

More Interim Steps Could Be Taken to Mitigate Information Technology Supply Chain Risks

Report Information

Date Issued
Report Number
2022-20-009
Report Type
Audit
Joint Report
Yes
Participating OIG
Treasury Inspector General for Tax Administration
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View Report

Recommendations

The Chief Information Officer should implement controls to manage information technology supply chain risks based on the revised Internal Revenue Manual 10.8.1 guidance as well as do more to identify and incorporate Supply Chain Risk Management (SCRM) best practices of other Federal agencies that would be applicable to the IRS.

The Chief Procurement Officer should ensure that contracting officers are provided further instructions on the proper and consistent application of contract clauses addressing supply chain risks

The Chief Procurement Officer should ensure that the quality assurance process includes a review for the proper and consistent application of contract clauses addressing supply chain risks.