Specifications include, but are not limited to: Security Operations (SECOPS) is the set of information technology services (ITS) resources, procedures, and tools that implement IT security and assure cyber-resilience within the operational (ITS Production) environment of the Commission. SECOPS typically includes the functions of: • Security Quality Assurance (QA). Such as pre-Production software/system security testing, quality assurance and promotion into production operations, • IT Asset Management, IT environmental “Security Hygiene,” File/system Integrity Checking, and “Vulnerability Management.” Such as discovery and management of hardware and software assets; implementing security configurations; patching; scanning; anti-malware; continuous vulnerability/exposure monitoring; security review and evaluation of proposed change controls impacting firewall rules; etc.,
