Specifications include, but are not limited to: Stony Brook requires a managed security services provider (MSSP) that delivers a solution that includes on-premise hardware, on-premise software, and remote or on-premise staff to holistically manage and respond to risk to our technology infrastructure. The solution should provide continuous cyber security monitoring and the ability to active respond to threats that could adversely impact our IT infrastructure on a 24x7 basis. The technology services provided should include a managed network intrusion detection solution as well as log collection with alert capabilities, all with firewall integrations (utilizing SBU’s existing firewall infrastructure) to block threats in real-time. Initial deployment will focus on the University infrastructure, but will be expanded to other portions of the business overtime to identify and reduce risk and threats to our IT infrastructure. The chosen vendor should be staffed and willing to accommodate custom and flexible requests throughout the term of our contract and provide liaison staff that serve as a virtual extension to our internal information security team. Additional support to be provided includes assisting during incident response and investigation, log correlation, and responding to legal or eDiscovery requests.
