Specifications include, but are not limited to: 1. The Contractor shall: a. Provide 24 full, annual licenses. Each license shall provide unlimited access to the following: 1) Allow users to set up, coordinate, initiate, and participate in cybersecurity expert calls. 2) Online portal including expert write-ups, research reports, and recordings. 3) Allow users to attend forums, symposiums, and webinars. b. Provide unlimited requests to a network of cybersecurity experts, which includes: 1) Phone calls up to 60 minutes with a cybersecurity expert to discuss a specific topic or question. 2) The ability to poll cybersecurity experts and receive short written responses from cybersecurity expert members. 3) The ability to receive a written response prepared by a cybersecurity expert member to an SCO request or question.. c. Provide access to a peer community for information and sharing of best practices within the information security (InfoSec) field, which includes: 1) Monthly presentations featuring cybersecurity expert members examining current InfoSec events. 2) Virtual and in-person roundtable discussions exclusively for Chief Information Security Officers (CISOs) and senior level InfoSec executives to learn and share insights in a confidential setting, led by staff and cybersecurity expert by invitation. 3) Virtual forums and educational events including keynote addresses, cybersecurity expert led breakout sessions, technology spotlight sessions, and networking breaks. Up to five SCO credential holders may attend in-person forums. 4) Virtual symposiums with cybersecurity expert led deep-dive explorations of technical and operational information security topics, free of vendor presence. d. Provide access to an online portal, which includes: 1) Cybersecurity expert written, topical reports, anonymized write-ups answering client written questions, and anonymized transcripts of expert call discussions. 2) A searchable database of anonymized questions from other member’s cybersecurity expert sessions. 3) On-demand recordings of symposiums and webinars. 4) A collection of tools, toolkits, templates, checklists, matrices, and maps with step-by-step guidance for tackling specific InfoSec initiatives and completing common tasks. 5) Daily coverage on security topics from key news publications, formatted in business language to brief the key internal stakeholders and executive staff. This includes live quarterly cybersecurity expert briefings and incident briefings with recordings. 6) Access to incident command center pages spun up to follow developments on major events. e. Provide aggregated third-party InfoSec information formatted in ready-to-use Microsoft PowerPoint slides, executive briefings, infographics, and InfoSec themed graphics library, to support internal communications to SCO executive staff. f. Provides a dedicated stream of research from cybersecurity experts and customers to help research, select, and implement vendors in key security domains. This should contain technology recommendations, market overviews, and real-life case studies of vendor selection and implementation. g. Provides live and recorded cybersecurity expert-led online instruction. Each course includes three to six hours of expert-led instruction with a hands-on, interactive element built into the session design, delivered in one-day or two-day formats and which include: 1) Accessible live online training available to anyone from SCO. 2) Online training library through on-demand access to all users...
