(1) Vendor needs to provide managed detection and response, security information and event management and security orchestration, automation and response solution.– The platform should have machine learning capabilities and other advanced analytics of structured as well as unstructured security and network data.– The platform shall have an executive dashboard to demonstrate the overall security posture of the organization and improvements over time. Provide examples from other successful engagements.– Service provider shall assist in building the Standard Operating Procedures (SOPs) / Playbook for security incidents.– Service provider shall provide 24x7x365 monitoring and response service using the tools that are already in use in FCPS. FCPS tools include but are not limited to Fresh service, Office 365, Ping (ForgeRock), Google workspace, Fortinet, Mist, Verosint, Solar winds, Cisco, Oracle, Windows, Linux, F5, Crowd strike EDR, Cloudflare, Lightspeed.– Solution shall have out of the box support for at least 2000 data sources including sources such as domain controllers, VPNs, FWs, WAF, IPS/IDS, Windows, Linux, databases, and network devices.– The solution must support REST API, CEF, syslog, JSON, ODBC/JDBC, and integration based on log sources into text files.– The solution shall have extensive support for cloud infrastructure and shall support multi–cloud environments such as AWS, Azure and Google cloud.– “Solution shall support the below list of cloud assets out of the box. For other cloud assets, solution shall support custom integration options: Databases (Aurora, MySQL, Postgres, MS SQL), Web Apps, NSG Flow Logs, VPC Flow Logs, Active Directory, IAM, Application Gateways, WAF, Network Security Groups, Security Groups, Console logs.“– Solution should support integration for cloud SaaS applications such as O365, Amazon Workspace, and Microsoft Desktop as a Service.– Solution provide a web interface where all integrated assets from different environments such as