Specifications include, but are not limited to: OGS is requesting proposals from experienced and qualified law firms for Cybersecurity Legal Services, including but not limited to the following services: 1. Assisting Authorized Users with the review of cybersecurity incident response plans, cyber risk management and intellectual property, asset, privacy and data protection policies and other preparedness activities related to cybersecurity, cyber resiliency, cyber preparedness, privacy, and related matters; 2. Counseling and advising Authorized Users during incident response, including for example, by assisting with privileged incident response investigations, helping to coordinate resources and efforts, including breach notification, engaging with governmental entities such as the U.S. Department of Homeland Security, federal, state, and local law enforcement, analyzing incident investigatory findings, and providing advice on breach, notification, and privacy implications, as well as remediation recommendations; 3. Providing legal advice to Authorized Users pertaining to State, federal and international laws and regulations as well as policies and best practices related to cybersecurity, cyber resiliency, cyber preparedness, privacy, and related matters; and 4. Advising Authorized Users on contracts and disputes with third-party vendors related to cybersecurity, cyber resiliency, cyber preparedness, privacy, and related matters
