Open Cybersecurity & Data Privacy RFPs
Security assessments, penetration testing, SOC services, compliance audits, and privacy program work. Expect requirements around certifications (CISSP, SOC 2, FedRAMP) and incident response capabilities.
- Open RFPs
- 35
- Posted in last 30 days
- 29
- Median disclosed budget
- $611,325
- Next deadline
- June 15, 2026
Updated hourly from the Settle RFP Hunter database.
Most active issuers
- Sacramento Municipal Utility District (2)
- Rti International (2)
- New York City Department Of Finance (2)
- City Colleges Of Chicago (1)
- City Of Holland (1)
Closing soonest
View all 35 in RFP Hunter →Cybersecurity and Regulatory Consultant Services
Seeking a consultant to develop and institutionalize a cybersecurity and cyber resilience framework for the Philippines energy sector.
- Deadline:
- June 15, 2026
- Issuer:
- Rti International
- Location:
- Philippines
Cybersecurity and Regulatory Consultant Services
Seeking a firm to establish a sector-wide cybersecurity and cyber resilience framework for North Carolina's energy industry.
- Deadline:
- June 15, 2026
- Issuer:
- Rti International
- Location:
- Philippines
Payment Card Industry Data Security Standard Security Assessor Services
New York government authority seeks a qualified firm to perform annual PCI DSS certification, assessments, and reporting for multiple payment channels and city agencies. Vendors must hold current QSA credentials and have experience with large, complex PCI environments.
- Deadline:
- June 15, 2026
- Budget:
- $611,325
- Issuer:
- New York City Department Of Finance
- Location:
- New York, New York, United States
Security Assessor Services
New York government authority seeks security assessor services to support annual PCI DSS certification. Scope includes assessment, testing, validation, and compliance documentation.
- Deadline:
- June 15, 2026
- Budget:
- $611,325 (est.)
- Issuer:
- New York City Department Of Finance
- Location:
- New York, New York, United States
Cybersecurity Vulnerability Analysis Services
Seeking a vendor to conduct and maintain an annual Cybersecurity Vulnerability Analysis for IT and OT systems, with a focus on risk assessment, gap remediation, and regulator-ready documentation.
- Deadline:
- June 17, 2026
- Issuer:
- Suffolk County Water Authority
- Location:
- Oakdale, New York, United States
Ransomware Resilient Backup Solutions
Seeking a provider for backup and recovery solutions resilient to ransomware, including implementation, support, integration, and training for a Rhode Island district.
- Deadline:
- June 17, 2026
- Issuer:
- Barrington Public School District
- Location:
- Barrington, Rhode Island, United States
RFI for Client-Side Security Solutions
RFI seeking client-side security solutions to protect against browser-based payment threats and unauthorized page modifications.
- Deadline:
- June 18, 2026
- Issuer:
- Utah State University
- Location:
- Utah, United States
Online Gaming Integrity Geofencing System
Seeking vendors to provide information and market research on a state-wide geofencing system to block illegal online gambling in Florida.
- Deadline:
- June 18, 2026
- Budget:
- $250,000 – $1,000,000 (est.)
- Issuer:
- Florida Gaming Control Commission
- Location:
- Tallahassee, Florida, United States
Simulate Exposure Management and Threat Simulation Platform
Seeking a vendor for a one-year contract to provide simulate exposure management and threat simulation platform, including onboarding and premium support.
- Deadline:
- June 19, 2026
- Issuer:
- Sacramento Municipal Utility District
- Location:
- Sacramento, California, United States
Network Penetration Testing Services
Ossining, NY seeks a firm to conduct comprehensive network penetration and social engineering testing for all Village locations over a two-year contract.
- Deadline:
- June 19, 2026
- Issuer:
- Village Of Ossining
- Location:
- Ossining, New York, United States
Cybersecurity Managed Detection and Response Service
The government authority in Saskatoon seeks a provider for managed cybersecurity, including real-time threat detection, response, and risk management, under a three-year contract.
- Deadline:
- June 19, 2026
- Issuer:
- Saskatchewan Legal Aid Commission
- Location:
- Saskatoon, Saskatchewan, Canada
Supplemental Internal Auditing Services for Cybersecurity
Georgia seeks supplemental internal auditing services focused on cybersecurity for a major water system infrastructure.
- Deadline:
- June 19, 2026
- Issuer:
- Cobb County
- Location:
- Georgia, United States
Cyber Technology Services
RFP seeking a qualified vendor to deliver cyber technology and security services, including IT architecture, DevOps, defensive operations, and network security in Washington, DC.
- Deadline:
- June 19, 2026
- Issuer:
- Department Of Homeland Security, Cybersecurity And Infrastructure Security Agency
- Location:
- Arlington, Virginia, United States; Pensacola, Florida, United States; Richland, Washington, United States; Washington, District Of Columbia, United States; Idaho Falls, Idaho, United States; Bluemont, Virginia, United States
Insider Threat Program Services with User Activity Monitoring
Seeking vendors to provide insider threat program services with user activity monitoring for classified and unclassified government networks in Maryland.
- Deadline:
- June 19, 2026
- Issuer:
- Department Of The Air Force
- Location:
- Fort Washington, Maryland, United States
Recorded Future Threat Intelligence Platform and Implementation Services
This RFP is for a one-year contract to supply and implement the Recorded Future threat intelligence platform in California, including premium success and support services.
- Deadline:
- June 22, 2026
- Issuer:
- Sacramento Municipal Utility District
- Location:
- Sacramento, California, United States
Cloud-Delivered Secure Internet Access and Security Service Edge Solution
This RFP seeks a provider for a comprehensive cloud-native secure internet access and security service edge platform, with advanced threat detection, identity integration, and centralized cloud-based policy enforcement.
- Deadline:
- June 22, 2026
- Issuer:
- City Of Holland
- Location:
- Holland, Michigan, United States
CrowdStrike Software Subscription Licenses
Organization in Pennsylvania requires a range of CrowdStrike software subscriptions, including endpoint detection, response, and cloud security services.
- Deadline:
- June 24, 2026
- Issuer:
- City Of Philadelphia
- Location:
- Philadelphia, Pennsylvania, United States
Strengthening Defensive Cybersecurity and Penetration Testing Services Through Agentic AI and Automation
Washington, DC is seeking a provider for agentic AI-driven cybersecurity services, focusing on automated penetration testing and defensive cybersecurity enhancements.
- Deadline:
- June 24, 2026
- Budget:
- $100,000
- Issuer:
- Defense Logistics Agency
- Location:
- United States
SIEM and SOC Services
The City of Ann Arbor seeks a vendor for SIEM and SOC services, including a new log aggregation tool, off-hours monitoring, behavioral analytics, and monthly performance reviews.
- Deadline:
- June 26, 2026
- Issuer:
- Washtenaw County Purchasing
- Location:
- Ann Arbor, Michigan, United States
Cloudflare DDoS Services
A New York government entity seeks a vendor for Cloudflare DDoS protection services to secure its digital infrastructure.
- Deadline:
- June 29, 2026
- Budget:
- $50,000 – $125,000
- Issuer:
- State University Of New York (Suny)
- Location:
- Brooklyn, New York, United States
Third-Party Risk Management Platform
Ireland-based organization is seeking a SaaS third-party risk management platform to assess and manage business partners, featuring integration, automation, and advanced assessment functions.
- Deadline:
- June 29, 2026
- Budget:
- $360,000
- Issuer:
- Teagasc - The Agriculture And Food Development Authority
- Location:
- Ireland
Information Technology Managed Detection and Response Services
Englewood, Colorado seeks a provider for managed detection and response services including endpoint detection, vulnerability management, and SIEM for a one-year term.
- Deadline:
- June 30, 2026
- Issuer:
- City Of Englewood
- Location:
- Englewood, Colorado, United States
24/7 Cybersecurity Monitoring and Patch Management Services
Jasper County, South Carolina is soliciting 24/7 cybersecurity monitoring, threat detection, and patch management services, including SOC operations and integration with existing systems.
- Deadline:
- July 1, 2026
- Issuer:
- Jasper County Government
- Location:
- Ridgeland, South Carolina, United States
Cybersecurity Satellite System
Seeking R&D partners to supply a modular, innovative cybersecurity satellite test platform for experimentation and training, with remote-access and multi-payload capabilities.
- Deadline:
- July 2, 2026
- Issuer:
- Innovation, Science and Economic Development Canada
- Location:
- Canada
Frequently asked questions
- How many Cybersecurity & Data Privacy RFPs are open right now?
- There are currently 35 open Cybersecurity & Data Privacy RFPs tracked by Settle RFP Hunter, 29 of which were posted in the last 30 days. This page is refreshed hourly.
- What budgets do Cybersecurity & Data Privacy RFPs have?
- 9 of the open listings disclose a budget, with a median of about $611,325. Disclosed budgets range from $25,000 to $99,900,000.
- When is the next submission deadline for Cybersecurity & Data Privacy RFPs?
- The soonest submission deadline among open Cybersecurity & Data Privacy RFPs is June 15, 2026. Each listing page shows the full timeline, including question deadlines where published.
Other categories
- Financial, Legal, HR & Staffing(460)
- Construction, Facilities & Maintenance(364)
- Software, Web & Mobile Development(331)
- Architecture, Engineering & Urban Planning(283)
- IT Support, Hardware & Networking(237)
- Management Consulting & Admin Support(236)
- Events, Printing & Promotional Goods(144)
- Hospitality, Food Service & Travel(139)
- Healthcare Services, Wellness & Biotech(120)