IRS Seeks AI-Based Threat Detection

Home / Articles / External Non-Government


July 4, 2018 | Originally published by Date Line: July 4 on

The IRS wants an artificial intelligence  analytics platform that can help it proactively identify and mitigate cyber-related and insider threats on its systems.

According to a June 27 request for information from the IRS cybersecurity division, the tax agency is looking for private industry examples of a cloud-based AI platform, machine learning analytics and a customized user interface.

IRS envisions a solution that can continuously learn, provide real-time monitoring of cyber threats across networks and process data across a range of IT sources and devices, including internet-of-things devices and industrial control systems. The solution should be able to “identify unknown threats using unsupervised analytic techniques and behavioral-based analytics, along with known threats using external threat intelligence.”

In conjunction, the IRS wants to host it all in a big data cloud that has been approved by the Federal Risk and Authorization Management Program and that can support forensic research and centralize collection, aggregation and storage of security log files.

IRS Request for Information (RFI)

Advanced Analytics, Artificial Intelligence and Machine Learning Capabilities for the Cybersecurity Cloud Solution Program
Solicitation Number: 200002019
Agency: Department of the Treasury
Office: Internal Revenue Service (IRS)

Synopsis. The Internal Revenue Service”s (IRS) Cybersecurity Division has a business need for an Artificial Intelligent (AI) machined-based analytical platform to proactively detect and respond to cyber- and insider-related threats. The IRS intends to use the results of this RFI to assist in the assessment of on-going industry efforts within the identified focus areas. The finding will also help to shape the path forward for potential acquisitions to include determination of contractual mechanisms to potentially pursue capabilities.

This is a Request for Information (RFI) (hereinafter Notice). This is NOT a solicitation for proposals, proposal abstracts, request for bids or quotations, nor, a promise to issue a solicitation in the future. The IRS is seeking information from industry regarding artificial intelligence, machine learning, cognitive computing and data analytics techniques, algorithms, and capabilities that have application to cybersecurity areas at IRS: threat intelligence, insider threat, cyber operations and processing, exploitation & dissemination (PED) / big data analytics. The purpose of this notice is for the Government to obtain market research information and gain an understanding of the marketplace. Utilizing the RFI, the IRS is seeking to identify solutions and approaches that currently exist in the marketplace and information regarding innovative ideas or concepts regarding the service in question.

Federal Risk and Authorization Management Program (FedRAMP)

FedRAMP is a government-wide program that provides a standardized approach to security assessment, authorization, and continuous monitoring for cloud products and services.  FedRAMP enables Agencies to rapidly adapt from old, insecure legacy IT to mission-enabling, secure, and cost effective cloud-based IT.

FedRAMP created and manages a core set of processes to ensure effective, repeatable cloud security for the government. FedRAMP established a mature marketplace to increase utilization and familiarity with cloud services while facilitating collaboration across government through open exchanges of lessons learned, use cases, and tactical solutions.