Posted Date : October 29,2020
Product (RFP/RFQ/RFI/Solicitation/Tender/Bid Etc.) ID : ACCT-10032
Government Authority located in New Orleans, Louisiana; USA based organization looking for expert vendor for cybersecurity integrity audit services.
[A] Budget: Looking for Proposals
[B] Scope of Service:
Vendor needs to provide cybersecurity integrity audit services to the government authority located in New Orleans, LA.
• Vulnerability Assessment with Penetration Test
• Post-remediation Vulnerability Assessment
• 12 months from the CV’s vCISO (See below for vCISO) telephone support (not to exceed 24 hours)
- The solution by the CV can be a first step in understanding and implementing National Institute of Standards and Technology (NIST) guidelines for any organization to achieve and acceptable level of Cybersecurity, based on industry-specific best practices.
- Vulnerability Assessment
The objective of a vulnerability assessment is to validate host configurations and produce a list of known vulnerabilities existing on in-scope systems. The testing includes manual validation of vulnerabilities to reduce false positives.
- Pre-Engagement
During the CV’s initial scheduling and kickoff sessions, the rules of engagement for the testing are established. Topics to be covered include:
• Goals and objectives for the testing
• Definition of scope, validation of targets
• Testing timelines and schedules
• Rules of engagement, levels of effort and risk acceptance
• Reporting requirements and deliverables, timelines, and milestones
• Key personnel, roles and responsibilities, escalation rules and emergency planning
• Our source IP address ranges, tools, and techniques
- Automated tools can greatly assist in reducing work effort and costs associated with repetitive and time-consuming tasks, but manual techniques and analysis are also performed in each step to have the greatest understanding of your environment. Manual validation of findings reduces false positives; manual vulnerability testing reduces false negatives. False positives on a report lead to wasted effort in remediation.
False negatives can expose an organization to risk of intrusion.
- Virtual CISO services that CV may provide include, but are not limited to, the following:
• Analyze the effectiveness of your current security program.
• Perform internal and external vulnerability assessments.
• Perform Penetration Test.
• Review information security policies, processes, and controls.
• Provide guidance on the acquisition of security products and technologies.
• Establish annual and long-term security goals.
• Develop security and operating procedures.
• Train your staff on security procedures.
• Perform status monitoring and reporting tasks.
• Oversee security breach and incident investigations.
- For more information describe in document.
[C] Eligibility:
- Onshore (USA Organization Only);
[D] Work Performance:
Performance of the work will be Offsite. Vendor needs to carry work in their office location.
Budget :
Deadline to Submit Proposals: November 25,2020
Cost to Download This RFP/RFQ/RFI/Solicitation/Tender/Bid Document : 5 US$
![]()
Product (RFP/RFQ/RFI/Solicitation/Tender/Bid Etc.) ID : ACCT-10032
Government Authority located in New Orleans, Louisiana; USA based organization looking for expert vendor for cybersecurity integrity audit services.
[A] Budget: Looking for Proposals
[B] Scope of Service:
Vendor needs to provide cybersecurity integrity audit services to the government authority located in New Orleans, LA.
• Vulnerability Assessment with Penetration Test
• Post-remediation Vulnerability Assessment
• 12 months from the CV’s vCISO (See below for vCISO) telephone support (not to exceed 24 hours)
- The solution by the CV can be a first step in understanding and implementing National Institute of Standards and Technology (NIST) guidelines for any organization to achieve and acceptable level of Cybersecurity, based on industry-specific best practices.
- Vulnerability Assessment
The objective of a vulnerability assessment is to validate host configurations and produce a list of known vulnerabilities existing on in-scope systems. The testing includes manual validation of vulnerabilities to reduce false positives.
- Pre-Engagement
During the CV’s initial scheduling and kickoff sessions, the rules of engagement for the testing are established. Topics to be covered include:
• Goals and objectives for the testing
• Definition of scope, validation of targets
• Testing timelines and schedules
• Rules of engagement, levels of effort and risk acceptance
• Reporting requirements and deliverables, timelines, and milestones
• Key personnel, roles and responsibilities, escalation rules and emergency planning
• Our source IP address ranges, tools, and techniques
- Automated tools can greatly assist in reducing work effort and costs associated with repetitive and time-consuming tasks, but manual techniques and analysis are also performed in each step to have the greatest understanding of your environment. Manual validation of findings reduces false positives; manual vulnerability testing reduces false negatives. False positives on a report lead to wasted effort in remediation.
False negatives can expose an organization to risk of intrusion.
- Virtual CISO services that CV may provide include, but are not limited to, the following:
• Analyze the effectiveness of your current security program.
• Perform internal and external vulnerability assessments.
• Perform Penetration Test.
• Review information security policies, processes, and controls.
• Provide guidance on the acquisition of security products and technologies.
• Establish annual and long-term security goals.
• Develop security and operating procedures.
• Train your staff on security procedures.
• Perform status monitoring and reporting tasks.
• Oversee security breach and incident investigations.
- For more information describe in document.
[C] Eligibility:
- Onshore (USA Organization Only);
[D] Work Performance:
Performance of the work will be Offsite. Vendor needs to carry work in their office location.
Budget :
Deadline to Submit Proposals: November 25,2020
Cost to Download This RFP/RFQ/RFI/Solicitation/Tender/Bid Document : 5 US$