The District of Columbia is seeking commercial solutions that provide cloud-based security for operational technology (OT), Internet of Things (IoT), and edge environments. The solution must deliver device-level threat detection and alerting across OT, IoT, and edge deployments, ensuring compatibility with existing enterprise IT systems. Special consideration is given to devices with limited resources, which cannot support traditional endpoint security agents.

Vendors should offer lightweight device security agents capable of detecting malicious software or execution attempts directly on the device, while operating without the need for continuous cloud-based analysis. The agent must maintain a minimal resource footprint, function without kernel modifications or invasive hooks, and avoid degrading device performance or interfering with real-time operations. It should support deployment on various device types, such as embedded systems and industrial controllers, without necessitating changes to existing workflows.

Additionally, solutions must provide integration with enterprise security operations using standardized APIs or data formats for efficient alert ingestion. The ability to correlate security alerts with other cybersecurity telemetry is required, ensuring comprehensive threat visibility. Solutions should be deployable on conventional IT systems if needed, enabling consistent threat detection across all environments.