U.S. flag

An official website of the United States government

Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Review of the System Failure That Led to the Tax Day Outage

Report Information

Date Issued
Report Number
2018-20-065
Report Type
Audit
Joint Report
Yes
Participating OIG
Treasury Inspector General for Tax Administration
Agency Wide
Yes (agency-wide)
Questioned Costs
$0
Funds for Better Use
$0
View Report

Recommendations

The Chief Information Officer should ensure that the Director, Security Operations and Standards Division, collects and formally documents in one consolidated action plan any lessons learned for all major outages and implements the approved corrective action plan per the Major Outage SOP.

The Chief Information Officer should formalize the monthly microcode bundle meetings with IBM and Unisys to include documenting meeting participants, detailed meeting minutes, and discussions of risks identified in the release notes for the current microcode updates.

The Chief Information Officer should ensure that all decisions to not install the latest microcode bundle updates are documented and approved by the system Authorizing Official.

The Chief Information Officer should seek liquidated damages from the contractor per the ESS contract.

The Chief Information Officer should modify the ESS contract to require the contractor to provide the IRS with timely notifications of all alerts, to include "call home" events regardless of severity level.