Specifications include, but are not limited to: A Contractor hosted Software as a Service (SaaS) Security Awareness training solution that is compliant with FISMA and NIST special publications for approximately sixty thousand (60,000) employees and contractors. The solution implementation start date for Security Awareness training is required to start in March of 2022 and shall commence in short phases to all SOM employees within thirty (30) days. This effort will provide measurable results and utilize that information to focus/spot-train specific users. This program’s data will be utilized to report SOM’s on-going efforts to administer security awareness training. • Contractor hosted solution to provide Phishing Software as a Service (SaaS) email services • Contractor will provide Maintenance and Support of the security awareness training and Phishing solution in compliance with FISMA and NIST requirements • Contractor will assist with User file imports and deletes • Contractor provided Program introduction and administrator training • First campaign walkthrough guidance with contractor’s support team • Full State access to assessment, testing, education, and reporting tools • State access to comprehensive library of phishing campaign emails and landing pages • Ability for the State to deploy unlimited number of security awareness training and phishing campaigns
