• Endpoint Security – Propose and manage Anti-Virus/Anti-Malware protection including real-time endpoint notification • Server Security – Propose and manage cybersecurity solutions with advanced threat protection, virus /malware protection, and visibility into encrypted traffic (utilizing Syxsense) • Network Protection – Propose and manage protection for our cloud-based DNS connections, network, and users from cyberattacks at the domain level. Propose and assist NW Administrator with network segmentation and best practices as related to cyber security. (utilizing MixMode) • Daily Health & Safety Checks – Monitor unauthorized login attempts and run system vulnerability checks. Run comprehensive scans of the City’s systems and logs to identify potential problems in advance (utilizing Tenable) • Weekly Reporting – Deliver a detailed report on the health and security of the City’s critical IT assets (utilizing MixMode) • 24/7 Monitoring – Deliver information to the City quickly about errors and highlight problems that need attention (utilizing MixMode) • Quarterly Assessment – The selected firm will come onsite once a quarter for a physical inspection of the City’s infrastructure, perform a network and security assessment, and ensure our technology is properly aligned to best practices and our business goals. • Annual CyberSecurity Training of all City employees that use a computer; including City Council. • Annual Penetration Testing & Periodic Phishing & Email Security tests. Results to be captured and reported back to City IT Director. Follow-up training and recommended best practices for offenders. (utilizing SANS/Litmos curriculum) • Firewall IPS/IDS with 24/7 Monitoring (3rd party threat detection) (utilizing existing onpremise High Availability configuration) • Long-term Network Advisement and Infrastructure Enhancement – The selected firm will be tasked with working directly with City of Joplin Network Administrator, to bring long-term structure, stability, and enhancements. • Incident Response plan & preparation. Coordinate and train City IT staff on future incident response roles & participation. Annual “exercise” on incident response & mitigation plan. • Air Gap Backup & Recovery. Assist NW Administrator with proposed changes to existing backup appliance and recommend future enhancements. Including, but not limited to IMAGE LEVEL offsite backups of ALL on-premise servers • SOC for CyberSecurity. Establish systems and controls to satisfy SOC reporting requirements as it relates to the CyberSecurity framework and monitoring.
