Specifications include, but are not limited to: 1.DE.AE-1 – Security Monitoring: The PSC must provide audit logging, retention, and monitoring, including IPS or IDS (Intrusion Prevention and Detection Systems)2.DE.CM-1 – Security Monitoring: The PSC must implement monitoring of personnel activityon systems for potential security incidents, including third-parties3.DE.CM-4 – Data Security: The PSC must implement protection systems to address maliciouscode or anti-virus management4.RS.AN-1 – Information Security Incident Management: The PSC must provide the results ofrecent incident response tests, and documented processes and procedures requiring tests of anomalous activity5.Fully Managed 24/7 Threat Detection and Response: Sophos MDR is a service whereby cybersecurity professionals detect and respond accordingly to cybersecurity attacks targeting the PSC Network, computers and servers6.Sophos MDR provides capability beyond the scope of Endpoint Detection tools that run on computers and servers
