The IRS requires a Written Information Security Plan with continuous monitoring. The FTC Safeguards Rule made it federal law in June 2023. SentinelSMB is the monitoring component of your WISP — live in under 10 minutes, $299/month for Starter.
Tax-related identity theft losses reported to IRS Criminal Investigation in 2023
36 detection engines sweep your Microsoft 365, Google Workspace, AWS, and Cloudflare accounts every five minutes. Critical threats surface instantly. Normal activity gets filed away.
Attackers phish a bookkeeper, harvest client SSNs and EFINs from email threads, and file fake returns in February. You find out when legitimate clients get rejected at the IRS.
A forwarding rule added during busy season quietly copies every W-2, 1099, and engagement letter to an external inbox for three months. IRS Publication 4557 requires monitoring that catches this.
Stolen partner credentials let an attacker log into your Drake, UltraTax, or Lacerte portal and download every prior-year return. Most firms have zero monitoring on these access events.
SentinelSMB provides the continuous-monitoring, access-control, and incident-response controls these frameworks require. Pro subscribers get the audit-ready evidence package.
Every paid tax preparer must implement a WISP that includes monitoring of access to systems holding taxpayer data. SentinelSMB provides the continuous-monitoring component and documents every access event.
Effective June 9, 2023, the FTC Safeguards Rule requires tax preparers (as financial institutions) to implement continuous monitoring, designate a qualified individual, and maintain an incident response plan.
Publication 4557 requires controlling access to taxpayer data and monitoring who accesses what. SentinelSMB tracks every login, every file access, and every permission change across Microsoft 365 and Google Workspace.
The Gramm-Leach-Bliley Act requires financial institutions to protect customer information. SentinelSMB provides the detection and response capabilities the Safeguards Rule expects.
SentinelSMB provides the continuous-monitoring, access-logging, and incident-response components required by Publication 4557. You still need a written WISP document, a designated qualified individual, and employee training. Pro subscribers get six audit-ready policy templates including a WISP framework.
If your firm handles customer financial information — and nearly every tax and accounting firm does — you are a financial institution under GLBA and the Safeguards Rule applies. Continuous monitoring has been mandatory since June 9, 2023.
SentinelSMB provides the access monitoring and audit trail the IRS expects to see from EFIN holders. We cannot complete the e-Services application for you, but we generate the documentation that demonstrates continuous monitoring.
SentinelSMB monitors your Microsoft 365, Google Workspace, AWS, and Cloudflare environments — wherever your email, documents, and cloud infrastructure live. If your tax software is self-hosted with SSO against one of those, the account activity is covered.
Starter is $299 a month. Pro is $599 a month. Less than ten dollars a day to monitor every client SSN, W-2, and 1099 in your system around the clock. Pro includes the Cyber Insurance Evidence Report, which most firms pay $2,000-5,000 to consultants to produce manually.
Get continuous monitoring live before next tax season. 7-day free trial. Under 10 minutes to connect. Credit card required, nothing charges until day 8, cancel in one click.