Specifications include, but are not limited to: 1. Continual review of the security and configuration of internal and public-facing infrastructure. 2. Continual evaluation of the security of information technology systems and networks to ensure the effectiveness of deployed security measures. 3. Continual review of the security and configuration of internal City of Moab IT infrastructure. This includes the associated networks and systems with a perspective of ensuring confidentiality, integrity and availability of data and information systems. 4. Continual review of the security of the City’s SCADA networks and its maintenance/control systems. 5. Continual review of the security associated with web applications, hosted websites, VPNs and extranets in the City DMZ. 6. Verify the perimeter security controls. 7. Identify and recommend safeguards suited to the City of Moab’s environment with the aim to strengthen the level of protection of the City of Moab IT infrastructure. 8. Breach management.