Specifications include, but are not limited to: Proposer(s) interested in being considered must review and understand the full scope of the RFP requirements. Proposer shall submit information that demonstrates its expertise in one or more of the categories listed below. The categories are based on the NIST Cybersecurity Framework. Categories of Services under this RFP include: 2.3.1 CATEGORY 1 - Identify: Develop the organizational understanding to manage cybersecurity risk to systems, assets, data, and capabilities. 2.3.2 CATEGORY 2 - Protect: Develop and implement the appropriate safeguards to ensure delivery of critical infrastructure services. 2.3.3 CATEGORY 3 – Detect: Develop and implement the appropriate activities to identify the occurrence of a cybersecurity event. 2.3.4 CATEGORY 4 - Respond: Develop and implement the appropriate activities to take action regarding a detected cyber security event. 2.3.5 CATEGORY 5 – Recover: Develop and implement the appropriate activities to maintain plans for resilience and to restore any capabilities or services that were impaired due to a cyber security event.
