Specifications include, but are not limited to: 1. Manage Detection and Response, MDR. Must have a US based in-house, non-outsource SOC that operates 24x7x365. Proactive response and remediation. Threat containment and remediation. Oversight by human threat hunters and incident responders. MSSP must work cooperatively with Aiken County IT staff by providing alerts of threats found, and full access to the EDR/XDR and SIEM tenant. 2. Solution\services to include EPP/EDR/XDR agent for approximately 960 desktops, laptops, tablets, & 100 servers 3. Log Collection and Analysis (SIEM) from servers, firewalls, routers, switches. Minimum 1-year log retention. Current Ingest rate is ~ 3TB per month. 4. Vulnerability management, and external vulnerability scanning. 5. Portals and Dashboards. Reports of daily incidents, and weekly scans/reports of vulnerabilities that need to be addressed on the County’s end-points and infrastructure. 6. Provide tools for device integrity verification, per CJIS security policy section SI-7. 7. Custom Security Rules. 8. DNS monitoring. 9. CJIS certified/compliant. 10. Dark Web Monitoring. 11. Ability to provide Cloud Service Monitoring (future).
