Cyber Security Monitoring and Detection Services

The vendor required to provide cybersecurity monitoring and detection service capable of delivering comprehensive managed detection and response (MDR) services or approved equal.
- Provide 24x7x365 threat monitoring, analysis, escalation, and response capabilities aligned to the service expectations, roles, deliverables, and limitations.
- Provide MDR services that deliver full-spectrum cybersecurity monitoring, detection, analysis, and incident containment support.
- Requirement:
1. Continuous monitoring and threat detection
•    24/7/365 monitoring and threat detection operations using dedicated MDR security analysts 
•    Multi-layered detection leveraging threat research, data science, and custom detection engineering teams. 
•    Real-time alerting with automated and analyst-driven triage workflows.
2. Threat hunting
•    Continuous proactive threat hunting to identify risks, weaknesses, and emerging threats across the customer environment before they escalate.
3. Incident investigation and response
•    Detailed investigation notes, including timeline, analyst actions, and remediation recommendations. 
•    Containment response actions using automated and analyst-initiated security orchestration, automation and response (soar) capabilities for clients opting into full mode 
•    Support for customer war rooms, including senior analyst engagement for up to three hours per incident where applicable.
4. Client collaboration and communication
•    Support through Jira ticketing, microsoft teams, cisco WebEx, and security operations center (soc) email channels 
•    Clear escalation logic for emergency and non-emergency incidents. 
•    Optional scheduled engagements with senior MDR analysts for security posture review and recommendations.

- Contract Period/Term: 3 years