The Province of Ontario is seeking a vendor to provide a managed, cloud-based cyber threat intelligence platform delivered exclusively as a SaaS solution. The desired platform must not involve hybrid or on-premises deployments and should offer managed services alongside the core platform functionality.

Key requirements include the encryption of all threat analysis data using acceptable algorithms, with capabilities for the organization to control encryption keys. The platform must provide comprehensive, timely threat intelligence through a central repository, consolidating and enriching data from a wide range of sources—such as open source intelligence, news outlets, social media, forums, security research, dark web channels, malware repositories, vulnerability databases, government reports, and vendor tool telemetry.

Additionally, the platform should feature an advanced, searchable threat actor database, offering detailed victim profiles, historical attack information, tactics, techniques, procedures, and activity timelines. The solution must support integration with external threat feeds through formats such as STIX, TAXII, RSS, URLs, and APIs. Robust dashboard and visualization tools for both strategic and technical reporting are also required, enabling effective monitoring and response to emerging cyber threats.