Vendor needs to provide cloud–based threat intelligence platform. – Provide Cyber Threat Intelligence managed services and platform. – Be a fully cloud–based SaaS offering and managed service (i.e., no hybrid/on–prem deployments). – Encrypt all threat analysis information entered by the agency by an acceptable algorithm, including the ability for the Bank to control the encryption keys. – To provide timely threat intelligence in a ready–made central repository on active campaigns and emerging threats with strategic, operational, and tactical context that is curated and normalized via data consolidation across different source formats, and enrichment from sources such as: open source intelligence (OSINT), news, social media, forums, security research, dark web, malware repositories, vulnerability databases, government reporting, vendor security tooling telemetry data. – To provide a threat actor database, that is searchable using custom search criteria, with victimology details, historic attack records, respective TTPs, including command lines, file paths, tools, and attack chains, and timeline of activity views. – Allow input from external threat feeds from structured threat information expression (STIX), trusted automated exchange of indicator information (TAXII), really simple syndication (RSS), uniform resource locators (URLs), and application programming interfaces (APIs). – Support dashboards and visualizations for both strategic and technical reporting.