data center analytics (Timofeev Vladimir/

IRS seeks AI-based threat detection

The IRS wants an artificial intelligence  analytics platform that can help it proactively identify and mitigate cyber-related and insider threats on its systems.

According to a June 27 request for information from the IRS cybersecurity division, the tax agency is looking for private industry examples of a cloud-based AI platform, machine learning analytics and a customized user interface.

IRS envisions a solution that can continuously learn, provide real-time monitoring of cyber threats across networks and process data across a range of IT sources and devices, including internet-of-things devices and industrial control systems. The solution should be able to "identify unknown threats using unsupervised analytic techniques and behavioral-based analytics, along with known threats using external threat intelligence."

In conjunction, the IRS wants to host it all in a big data cloud that has been approved by the Federal Risk and Authorization Management Program and that can support forensic research and centralize collection, aggregation and storage of security log files.

Responses are due Aug. 10, 2018.

The IRS has faced pressure from Congress and its inspector general over the past few years to improve cybersecurity protections and better protect taxpayer data in the wake of the 2016 Get Transcript breach. A 2017 audit found that IRS was not effectively implementing three of the five core functions (Identify, Protect, Detect, Respond and Recover) listed in the Cybersecurity Framework, including identifying and detecting malicious activity on its networks.

IRS contracting officials have also stated a desire over the past year to collaborate more with industry in advance of procurements. The agency has begun holding annual reverse industry days and is working to establish an enterprisewide dashboard to provide agency officials with better visibility of the acquisition lifecycle and canvass the contracting community for ideas and feedback.

"Once we understand what's being planned, then we can help with that industry engagement much earlier in advance," Chief Procurement Officer Shanna Webbers said in an interview in April.

About the Author

Derek B. Johnson is a senior staff writer at FCW, covering governmentwide IT policy, cybersecurity and a range of other federal technology issues.

Prior to joining FCW, Johnson was a freelance technology journalist. His work has appeared in The Washington Post, GoodCall News, Foreign Policy Journal, Washington Technology, Elevation DC, Connection Newspapers and The Maryland Gazette.

Johnson has a Bachelor's degree in journalism from Hofstra University and a Master's degree in public policy from George Mason University. He can be contacted at, or follow him on Twitter @derekdoestech.

Click here for previous articles by Johnson.

Stay Connected

Sign up for our newsletter.

I agree to this site's Privacy Policy.