Specifications include, but are not limited to: OPERS is seeking the services of a qualified firm to perform a penetration testing audit. The objective of the engagement will be to: 1. Provide an independent assessment of the effectiveness of OPERS’ external network security and its alignment with leading practices of system network security processes and procedures. 2. Identify any issues that affect the security of OPERS’ external network. 3. Submit findings and recommendations in executive and technical level reports. A complete presentation of findings is expected to include an Executive Summary, a Technical Summary, and a Detailed Technical Report. These reports should detail what security risks were identified; their potential impact on our systems; and a detailed and specific remediation recommendation. These reports must include “trophies” obtained with any sensitive information (i.e. specific passwords, social security numbers, etc,) redacted. These reports and findings should be delivered in draft form electronically. A closing meeting will be held to discuss these findings with key OPERS personnel. The final report including management responses should be delivered electronically and in hard copy.