The IRS’s Enterprise Case Management System did not always meet established cloud security requirements, the Treasury’s Inspector General for Tax Administration found.
In a new report, the IG found the IRS did not meet every agency guideline for cloud operations, despite running a hybrid cloud system aimed at modernizing and consolidating the IRS’s legacy case management system—under the agency’s cloud authorization. The system “processes and stores sensitive information within the IRS, providing restricted access to IRS employees via the Internet,” the report noted.