Error status

TIGTA's previous website is temporarily unavailable. We are providing this interim website to keep you informed about our latest reports and how you can submit a complaint or report fraud, waste, and abuse within IRS programs or by IRS employees.

Vulnerability Scanning and Remediation Processes Need Improvement

The Chief Information Officer should establish an entity to oversee enterprise-wide vulnerability remediation to ensure that vulnerabilities are remediated within required time frames, Plans of Action and Milestones (POA&Ms) and Risk-Based Decisions (RBDs) are documented as required, and vulnerability remediation metrics are reviewed and reported to appropriate leadership.