IRS seeks cloud-based AI for threat detection
- By Derek B. Johnson
The cybersecurity division of the IRS wants private industry to give it examples of an AI-based platform, machine learning analytics and a customized user interface for threat detection.
The agency wants a solution that can continuously learn, provide real-time monitoring of cyber threats across networks and process data across a range of IT sources and devices, including internet-of-things devices and industrial control systems. The solution should be able to "identify unknown threats using unsupervised analytic techniques and behavioral-based analytics, along with known threats using external threat intelligence,"according to the June 27 request for information.
In conjunction, the IRS wants to host it all in a big data cloud that has been approved by the Federal Risk and Authorization Management Program and that can support forensic research and centralize collection, aggregation and storage of security log files.
Responses are due Aug. 10, 2018.
The IRS has faced pressure from Congress and its inspector general over the past few years to improve cybersecurity protections and better protect taxpayer data in the wake of the 2016 Get Transcript breach. A 2017 audit found that IRS was not effectively implementing three of the five core functions (Identify, Protect, Detect, Respond and Recover) listed in the Cybersecurity Framework, including identifying and detecting malicious activity on its networks.
IRS contracting officials have also stated a desire over the past year to collaborate more with industry in advance of procurements. The agency has begun holding annual reverse industry days and is working to establish an enterprisewide dashboard to provide agency officials with better visibility of the acquisition lifecycle and canvass the contracting community for ideas and feedback.
"Once we understand what's being planned, then we can help with that industry engagement much earlier in advance," Chief Procurement Officer Shanna Webbers said in an interview in April.
Derek B. Johnson is a senior staff writer at FCW, covering governmentwide IT policy, cybersecurity and a range of other federal technology issues.
Prior to joining FCW, Johnson was a freelance technology journalist. His work has appeared in The Washington Post, GoodCall News, Foreign Policy Journal, Washington Technology, Elevation DC, Connection Newspapers and The Maryland Gazette.
Johnson has a Bachelor's degree in journalism from Hofstra University and a Master's degree in public policy from George Mason University. He can be contacted at firstname.lastname@example.org, or follow him on Twitter @derekdoestech.
Click here for previous articles by Johnson.