Specifications include, but are not limited to: The purpose of this RFP is to contract with a vendor who will provide Managed SecurityService Provider (MSSP) services including, but not limited to, the following: •Implement security telemetry (i.e., log collection and 12-15 month archival) forentire IT technology stack via security data lake or security information and eventmanagement (SIEM) solutions.•Manage attack surface of all digital assets (i.e., user, device, infrastructure,applications and data) and prioritize all regulated sensitive data (i.e., ProtectedHealth Information (PHI)/ Personally Identifiable Information (PII)/ Payment CardInformation (PCI)/ Social Security Number (SSN), etc.) for on-premises, in-cloudand with vendors (whenever pulling logs is possible).•Discover and close monitoring gaps as the attack surface constantly changes (i.e..,existing tech stack and emerging technologies for Robotic Process Automation(RPA), containers/Kubernetes (K8S), cloud, etc.).
