Specifications include, but are not limited to: The goal is to evaluate our current ability to prevent, detect and respond to cyber-attacks to the Executive Branch within the State of South Dakota. An external or internal penetration test may expose significant security risks and visibility gaps that also test the BIT’s capability to respond. Having an assessment that will allow the BIT to participate in real time attacks and work through the incident response playbooks will help analysts benefit from real world scenarios while also uncovering areas where the security posture of the State of South Dakota must be improved. Physical penetration testing is not within the scope. Benefits include: · Evaluate effectiveness of the State of South Dakota’s security posture · Improve BIT’s security readiness · Assess current security defense performance · Improve defender training · Gain objective insights into high risks across the State of South Dakota’s environment (external & internal)
