The government authority in Meriden, Connecticut seeks a qualified vendor to provide comprehensive cybersecurity monitoring and advisory services. The selected provider will deliver 24/7/365 monitoring of security events, log aggregation and analysis, alert triage, threat detection and correlation, and escalation of security incidents. The monitoring scope includes servers, endpoints, network devices, identity systems, cloud services, firewalls, and VPN systems.

The vendor will offer advisory services involving cybersecurity best practices, improvements to security architecture, identity and access management strategies, endpoint protection, backup and recovery planning, and security policy development. Incident response support, including analysis, triage, investigation, remediation guidance, containment, forensic assistance, and incident documentation, is also required.

Vendors must utilize advanced security monitoring tools, including Security Information and Event Management (SIEM) systems and endpoint detection and response capabilities. They are expected to provide regular reporting and ensure effective communication throughout the engagement.