Specifications include, but are not limited to: Vendor must provide Federal Information Act (FISMA) best practice blueprints with step by step advice, professional tools and templates for project deliverable and insights. Developing assessments, policy and procedures to ensure DEP’s compliance with FISMA. Vendor must provide ten (10) monthly status meetings for the overall FISMA project. Each meeting will last a minimum of one (1) hour each. These will be guided implementations with lead security experts over series of analyst and advisory calls provided by Info-Tech. Vendor must provide ten (10) consulting calls with DEP Security staff to address the nature of information security. Vendor must provide ten (10) hours of advisory and consulting time for FISMA advise, answers to questions and guidance on blueprint steps with members of our security team of seven (7) people. Vendor will administer a security governance and management scorecard, providing current state assessment with recommended actions items aligning with the appropriate deliverables.