IRS wants cloud-based AI to sniff out insider threats
- By Derek B. Johnson
- Jun 27, 2018
The IRS is looking for a cloud-based artificially intelligent analytical platform that can identify and mitigate cyber-related and insider threats within the agency.
The cybersecurity division of the IRS put out a request for information June 27 seeking private industry examples of an AI-based platform, machine learning analytics and a customized user interface.
The findings will "help to shape the path forward for potential acquisitions" down the line, according to the RFI.
The agency wants a solution that can continuously learn, provide real-time monitoring of cyber threats across networks and process data across a range of IT sources and devices, including internet-of-things devices and industrial control systems. The solution should be able to "identify unknown threats using unsupervised analytic techniques and behavioral-based analytics, along with known threats using external threat intelligence."
In conjunction, the IRS wants to host it all in a big data cloud that has been approved by the Federal Risk and Authorization Management Program and that can support forensic research and centralize collection, aggregation and storage of security log files.
Responses are due August 10, 2018.
The IRS has faced pressure from Congress and its inspector general over the past few years to improve cybersecurity protections and better protect taxpayer data in the wake of the 2016 Get Transcript breach. A 2017 audit found that IRS was not effectively implementing three of the five core functions (Identify, Protect, Detect, Respond and Recover) listed in the Cybersecurity Framework, including identifying and detecting malicious activity on its networks.
IRS contracting officials have also stated a desire over the past year to collaborate more with industry in advance of procurements. The agency has begun holding annual reverse industry days and is working to establish an enterprisewide dashboard to provide agency officials with better visibility of the acquisition lifecycle and canvass the contracting community for ideas and feedback.
"Once we understand what's being planned, then we can help with that industry engagement much earlier in advance," Chief Procurement Officer Shanna Webbers said in an interview in April.
Derek B. Johnson is a former senior staff writer at FCW.