The Respondent(s) selected will provide required cybersecurity advisory services for the Board and provide valueadded services that may be used by the Board in the future. Cybersecurity Strategy and Consulting The Respondent(s) will assist the Board with development and maintenance of a comprehensive cybersecurity strategy and program that aligns with the Board’s business objectives. The Respondent(s) will provide expert advice on cybersecurity strategies, policies, and compliance to align with industry standards, regulations, and compliance requirements. The Respondent will also provide oversight and governance to ensure the Board’s cybersecurity policies and practices align with industry best practices. Board and Executive Communication The Respondent(s) will present regular updates and reports to the Board during the quarterly Board meetings on cybersecurity matters. The Respondent(s) will also provide monthly cybersecurity updates to executive leadership. Vendor Risk Management Given the outsourced nature of the Board’s business, the Respondent will conduct comprehensive risk assessments and formulating risk management plans to identify vulnerabilities, threats, potential impact and prioritize cybersecurity risks associated with the Board’s assets and their third-party vendors and partners.
