AGL 38.02 Increased By ▲ 0.08 (0.21%)
AIRLINK 197.36 Increased By ▲ 3.45 (1.78%)
BOP 9.54 Increased By ▲ 0.22 (2.36%)
CNERGY 5.91 Increased By ▲ 0.07 (1.2%)
DCL 8.82 Increased By ▲ 0.14 (1.61%)
DFML 35.74 Decreased By ▼ -0.72 (-1.97%)
DGKC 96.86 Increased By ▲ 4.32 (4.67%)
FCCL 35.25 Increased By ▲ 1.28 (3.77%)
FFBL 88.94 Increased By ▲ 6.64 (8.07%)
FFL 13.17 Increased By ▲ 0.42 (3.29%)
HUBC 127.55 Increased By ▲ 6.94 (5.75%)
HUMNL 13.50 Decreased By ▼ -0.10 (-0.74%)
KEL 5.32 Increased By ▲ 0.10 (1.92%)
KOSM 7.00 Increased By ▲ 0.48 (7.36%)
MLCF 44.70 Increased By ▲ 2.59 (6.15%)
NBP 61.42 Increased By ▲ 1.61 (2.69%)
OGDC 214.67 Increased By ▲ 3.50 (1.66%)
PAEL 38.79 Increased By ▲ 1.21 (3.22%)
PIBTL 8.25 Increased By ▲ 0.18 (2.23%)
PPL 193.08 Increased By ▲ 2.76 (1.45%)
PRL 38.66 Increased By ▲ 0.49 (1.28%)
PTC 25.80 Increased By ▲ 2.35 (10.02%)
SEARL 103.60 Increased By ▲ 5.66 (5.78%)
TELE 8.30 Increased By ▲ 0.08 (0.97%)
TOMCL 35.00 Decreased By ▼ -0.03 (-0.09%)
TPLP 13.30 Decreased By ▼ -0.25 (-1.85%)
TREET 22.16 Decreased By ▼ -0.57 (-2.51%)
TRG 55.59 Increased By ▲ 2.72 (5.14%)
UNITY 32.97 Increased By ▲ 0.01 (0.03%)
WTL 1.60 Increased By ▲ 0.08 (5.26%)
BR100 11,727 Increased By 342.7 (3.01%)
BR30 36,377 Increased By 1165.1 (3.31%)
KSE100 109,513 Increased By 3238.2 (3.05%)
KSE30 34,513 Increased By 1160.1 (3.48%)

ISLAMABAD: In line with the recommendations of the Federal Tax Ombudsman (FTO) Dr Asif Mahmood Jah, the Federal Board of Revenue’s (FBR’s) Information Technology Wing (IT-Wing) shall be audited by a security firm to conduct a security audit of data centres.

This has been concluded in an investigation conducted by the FTO who has unearthed systematic flaws in security of confidential/ classified data of taxpayers, and directed the FBR to develop security policies/ infrastructure and implement international standards for protection against future cyber attacks on FBR website.

It is learnt that the FTO in a landmark investigation found that the confidential/ classified data of FBR Web portal was hacked, as the PRAL has not properly discharged its duties.

According to details, tax lawyer Waheed Shahzad Butt has filed a public interest complaint against the FBR/ PRAL key position holders, wherein after a comprehensive investigation, FTO Dr Asif Jah concluded that FBR/ PRAL is not using any software to manage its Network Security policies and FBR has filed a false/ wrong statement regarding the system disrupted period which is also contrary to the Finance Minister’s stance and using expired certification.

Daily wagers: FTO asks FBR to fix income limit for tax exemption

FTO order stated that the said analysis clearly reflects maladministration oozing out of neglect, inattention, delay, incompetence and ineptitude of FBR & PRAL’s functionaries, in the administration and discharge of assigned duties and responsibilities. PRAL data centre is not equipped with any Instruction Prevention/ Intrusion Detection system, a material systematic flaw exposing security of its database. PRAL data centre is not compliant to some credible International Standard and its certification was also expired in December 2020.

When contacted Waheed Shahzad Butt told this correspondent that cyber attack on key data websites, data and data centres of FBR/PRAL pose a threat that can undermine the security capabilities of the state.

FBR has submitted a compliance report to FTO which stated that the “PRAL has reinforced ‘ISMS’ policies and procedures in lieu of the ISO 27001 framework. However, they are awaiting security infrastructure, for which procurements has already been initiated.

The process of procurement of security infrastructure is already under way, which also consists of SIEM. Once the procurement is completed, PRAL will deploy SIEM at the data centres which enhanced security features. The FBR (IT Wing) has recently awarded a three years contract to a reputable security firm to conduct a security audit of data centres. After the completion of the audit, FBR Data Centres will be ISO-27001 certified”.

Copyright Business Recorder, 2022

Comments

Comments are closed.