Proposer shall provide a Solution that enables secure remote access to OT environments with the following capabilities: • Hardware-enforced isolation of OT from Informational technology (IT)/Internet networks (no inbound TCP/IP connectivity). • Centralized administration and role-based access management. o Role-based access control (RBAC) with the ability to restrict access to specific applications and systems. o Support for integration with enterprise authentication methods (e.g., AD/LDAP, TPM, or existing MFA). • Session monitoring and recording for compliance and audit purposes. o Centralized session recording (screen, keystrokes). o Full audit logs of user activity. o Ability to forward logs to a SIEM platform (e.g., Sumo Logic) for monitoring and incident response. • Operational Resilience - Defined support and replacement SLAs (e.g., 24-hour replacement).
