Specifications include, but are not limited to: The Department is seeking a Contractor(s) to provide incident response to minimize cyber threats, detect and respond to incidents, and protect critical systems and data within the state's digital infrastructure for the Department and Customers on a statewide basis. The Department is also responsible for implementing the recommendations of the February 1, 2021, Florida Cybersecurity Task Force Final Report which addresses key objectives related to the state’s cybersecurity infrastructure, governance, and operations. The resulting initiatives, projects, and efforts constitute the Enterprise Cybersecurity Resiliency Program. Additionally, in accordance with section 282.3185, F.S., the “Local Government Cybersecurity Act,” “Each local government shall adopt cybersecurity standards that safeguard its data, information technology, and information technology resources to ensure availability, confidentiality, and integrity. The cybersecurity standards must be consistent with generally accepted best practices for cybersecurity, including the National Institute of Standards and Technology Cybersecurity Framework.” In the Fiscal Year 2022-2023 General Appropriations Act (line 2944A), the Department was tasked with administering a competitive grant program for local government cybersecurity technical assistance for municipalities and counties. 6.1.1. Threat Monitoring and Detection Objective 6.1.1.1. The Solution shall provide continuous monitoring of the Customer’s environment using advanced security tools and technologies during the term of the objective. 6.1.1.2. The Solution shall provide detection and analysis of potential cybersecurity threats, including malware, intrusion attempts, and suspicious activities during the term of the objective. 6.1.1.3. The Solution shall provide real-time alerting and reporting of identified threats to enable timely response and mitigation actions during the term of the objective. 6.1.2. Incident Response and Management Objective 6.1.2.1. The Solution shall provide immediate response and assistance in the event of a cybersecurity incident, following established incident response procedures and best practices during the term of the objective. 6.1.2.2. The Solution shall provide incident assessment, containment, investigation, and recovery activities to minimize the impact on critical systems and data during the term of the objective.
