(1) Vendor needs to provide cyber security services to the government authority located in Hot Springs, AR.
- The service provider shall provide ongoing daily monitoring and management of the supported endpoint security platform.
- Shall have Cybersecurity solutions and services built on a "Zero Trust Network Architecture."
Reporting of findings to the customer at defined intervals - Monthly review of security deployments and incidents
- It shall develop and maintain an overall security posture to protect the organization (to include all aspects of security, that is, endpoints, firewalls, networking, etc.).
- Shall make recommendations on policies, procedures, and security improvements, including threat vectors outside the endpoint solution.
- The system shall maintain and have updating supported endpoint security platform.
- Conducting tabletop exercises (per request) with Information Systems (IT) staff to prepare in the event of an incident
- Shall have a creation of a Cyber Incident Response Plan (CIRP) and assist in the creation/maintenance of other required security policies.
- Cybersecurity vendor agreement consultation and product selection
- Cyber insurance consultation
- Researching new threats and developing countermeasures against them.
- Security incident management, in the event an incident occurs, the vendor will guide the organization through isolation and remediation. This guidance includes analysis and solutions for any systems extending beyond the endpoint security platform necessary for isolation or remediation.
- The service provider must have a human available for unlimited technical support, intervention to address security issues when a credible high-level threat is discovered in the environment, and be available 24x7x365 with contacts by phone, email, and text.
(2) All question must be submitted no later than May 19, 2023.
↧