Bid objectives are to select a qualified organization that can assist Internal Audit conduct information technology security audits. This organization should be experts in assessing the effectiveness of an organization's IT Security environment, identifying gaps, detecting potential vulnerabilities and correcting and mitigating Information Technology security risks and areas for improvement. The ideal vendor will provide direction and assistance to improve sensitive data security to meet industry best practices and regulatory standards, including but not limited to National Institute of standards and Technology (NIST), Health Information Trust Alliance (HITRUST), International Organization for Standardization (ISO).
