Get The FREE Compliance Starter Kit
& Automate Core IRS 1075 Requirements in Just 5 Minutes
How it Works
Request a Free Compliance Starter Kit for 1 Subnet
Plug-n-Play in 5 Minutes
- No Sensitive Data/Packet Collection
- Safe & Secure Behavior on the Network
Meet these IRS 1075 requirements And Get Weekly Reports
CM-8: System Component Inventory
- Identify Your Devices by Category and Type including unmanaged, IoT & OT devices
RA-5: Vulnerability Detection
- Real-Time Vulnerability Detect ion
- Designed to be Safe, even on IoT/OT Devices
Request your IoT-mini
Why the IoT-Mini?
The IoT-miniTM will only use locally accessible network information protocols to obtain information about local devices to be profiled. As such, no data could be used to identify or attack any customer. The data would be useless without direct access to the network, and direct access to the network would allow access to this information anyway.
The IoT-miniTM will connect to our CloudPortal® a minimum of every 5 minutes to access the updates and databases that help determine what tests to perform for a given device. There is no collection of packets or any potentially sensitive data in any way, not directly to the appliance itself or out to our CloudPortal®. Any data that is retained is stored in the geographic region of the customer’s choosing.
The IoT-miniTM will attempt to communicate with devices to assist in device profiling and vulnerability detection. This communication is minimal, a small fraction of the traffic in comparison to network scanners, and done interatively to avoid any impact to the device or network.
These measures provide assurance to our customers and partners that we will not gather or maintain any of their sensitive or protected information in our systems and that we be safe on the network and to devices.
Safe on Devices: The IoT-miniTM uses a proprietary, non-intrusive technique called PortSafeTM Inspection. Unlike vulnerability scanners that can overwhelm and crash sensitive IoT devices, PortSafeTM works iteratively and intelligently to understand the device and how to best test it. The result is that it will not interfere with devices as it does its discovery, identification, and vulnerability detection.
Safe on the Network: Unlike competitive solutions, the IoT-miniTM does not use network TAP/SPAN ports, so there is no addition load on the switch to duplicate packets which can cause network performance issues. Also, the IoT-miniTM generates only a small fraction of traffic vs. network scans.
The Benefit: Now you can safely and confidently discover and vulnerability test sensitive and resource-constrained devices that are excluded from intrusive vulnerability scans, without concern of crashing devices or causing network performance issues.
The IoTSecure IoT-miniTM is a free IoT security tool that makes it fast and easy to address common IoT security challenges. The IoT-mini is fits in the palm of your hand and runs off USB power connected to any ethernet jack on the network.The IoT-miniTM is completely automated. When you get your IoT-mini and connect it to the network, it will:
– Discover, track and identify IoT devices
– Safely detect IoT-specific vulnerabilities that vulnerability scanners often miss
– Summarize IoT inventory and vulnerabilities in the report
The IoT-miniTM is also aware of any new devices that connect to the network. When new devices connect, the IoT-miniTM will also begin to profile them to be identified and checked for IoT vulnerabilities. Also, there are no agents to install, no network TAPs, and there is no tuning.
The IoT-miniTM will only use locally accessible network information protocols to obtain information about local devices to be profiled. As such, no data could be used to identify or attack any customer. The data would be useless without direct access to the network, and direct access to the network would allow access to this information anyway.
The IoT-miniTM will connect to our CloudPortal® a minimum of every 5 minutes to access the updates and databases that help determine what tests to perform for a given device. There is no collection of packets or any potentially sensitive data in any way, not directly to the appliance itself or out to our CloudPortal®. Any data that is retained is stored in the geographic region of the customer’s choosing.
The IoT-miniTM will attempt to communicate with devices to assist in device profiling and vulnerability detection. This communication is minimal, a small fraction of the traffic in comparison to network scanners, and done interatively to avoid any impact to the device or network.
These measures provide assurance to our customers and partners that we will not gather or maintain any of their sensitive or protected information in our systems and that we be safe on the network and to devices.
Automate More IRS 1075 Requirements for Your Entire Network
Prices Start at Just $3K/Yr.
SI-4 & CA-7:
Continuous Monitoring
Agentless, Automated Behavior Monitoring
That requires No Tuning
SI-2:
Flaw Remediation
Automated Security Policy to Mitigate Threats
What Customers Say
Automate Inventory on All Devices
Unlike my scanner, IoTSecure tells me what types of devices are on my network, continuously. It’s a huge time saver on compliance, especially on unmanaged devices.
IT Director
Electronics Manufacturer
Safe, Real-time Vulnerability Detection
OT devices are too sensitive for intrusive vulnerability scans, so we needed a way to safely detect vulnerabilities for compliance. IoTSecure has proven to be safe and it’s 100% automated.
Security Lead
Large MSSP
Automate Monitoring without Tuning
Monitoring unmanaged devices that don’t run agents required too much work to effectively scale. IoTSecure completely automated the process. It was set it & forget it.
IT Manager
DoD Manufacturing Co.
How Can We Help
01
JumpStart Compliance FREE, in Just 5 Minutes
- Automated Inventory
- Safe Threat Detection
02
Learn More
Why Compliance is More Challenging with Unmanaged Devices
03
See it in Action!
- 1:1 Live Demo
- Real-Time Report
Unmanaged & IoT Devices Can Derail
IRS 1075 Compliance
CASE STUDY
Find out why traditional security tools fail to secure unmanaged & IoT devices and how IoTSecure provides automation to scale your compliance program.
More FAQs
IRS Publication 1075 provides guidance to ensure the policies, practices, controls, and safeguards employed by recipient agencies, agents, or contractors adequately protect the confidentiality of Federal Tax Information (FTI). FTI is defined by the IRS as any tax return or return information (and information derived from it) received from the IRS or secondary source. The US Internal Revenue Service Publication 1075 (IRS 1075) applies to all organizations that process or maintain US Federal Tax Information (FTI). Its purpose is to address any public request for sensitive information and prevent disclosure of data that would put FTI at risk. The IRS Office of Safeguards is the responsible office that maintains Publication 1075.
If you are an organization that handles FTI, then IRS 1075 and all the security controls dictated by IRS 1075 apply to you.
The most recent publication of IRS 1075 was November of 2021 and it will come into effect six months after the publication date, which means that all companies must be compliant with IRS 1075 effective June 2022. This essentially means that any entity handling federal tax information, including tax return information, for the year of 2022 must ensure they meet the high compliance guidance outlined in IRS 1075, especially those pertaining to information security.
IoTSecure covers the the foundational requirements of IRS 1075 as it pertains to information security and vulnerability management. We do so at a high value/low cost ratio. For more information on our control-solution mapping, please click here.
Sign up for a free IoT Mini Starter Kit and meet the foundational IRS 1075 requirements in just 5 minutes.
Request a Compliance Starter Kit *
- For corporate networks only.
- For registered companies with 100+ employees or that provide professional IT services.
- Upon form submission, follow the prompts to schedule a 10-minute call to cover device set up and your shipping information.