The vendor is required to provide from qualified vendors for a comprehensive cybersecurity pilot program.
- District seeks a solution that will strengthen identity verification by adding an extra layer of defense, ensuring that only authorized individuals can access critical systems, assist in monitoring for vulnerabilities and desktop firewall security.
- The program encompasses four distinct projects aimed at enhancing the district's cybersecurity posture through the deployment of advanced security solutions.
• CrowdStrike identity protection
• CrowdStrike host-based firewall
• Palo alto networks advanced URL filtering subscription
• CrowdStrike exposure management solution
1. CrowdStrike identity protection
• Provide the CrowdStrike identity threat protection solution
o Offer the necessary software and licenses for deploying the CrowdStrike identity threat protection solution.
o Ensure the solution integrates seamlessly with district existing infrastructure and security tools.
• Licensing:
o Provide flexible licensing options based on spring district, a total of 34,000 active ad accounts.
• Deployment and integration
o Provide end-to-end implementation of the solution, ensuring that all endpoints are protected and that there is minimal disruption to district operations during deployment.
o Integrate the solution with CrowdStrike EDR, district network, including identity management systems, active directory, and other authentication systems
• Real-time threat detection and prevention
o The solution must offer real-time detection of identity-based threats such as account takeovers, credential stuffing, and phishing attacks.
o Provide automated mitigation and remediation capabilities to block suspicious activities immediately.
• Training and knowledge transfer
o Provide training for district IT staff on the operation and management of the CrowdStrike identity threat protection solution.
o Offer user documentation, troubleshooting guides, and best practices for ongoing management.
• Reporting and analytics
o Implement reporting and analytics dashboards for district administrators to monitor identity-based threats, user access patterns, and overall security posture.
o Ensure the ability to generate compliance and audit reports to meet district requirements.
• Ongoing support and maintenance
o Provide ongoing support and maintenance for the CrowdStrike solution, including regular updates, threat intelligence updates, patches, and 24/7 customer support.
o Offer a dedicated support line for urgent cybersecurity issues.
• Compatibility requirement:
o Equipment must be compatible with existing CrowdStrike infrastructure. bids that are not compatible with existing CrowdStrike infrastructure will be disqualified.
2. CrowdStrike host-based firewall
• CrowdStrike host-based firewall solution:
o Provide the appropriate version(s) of the CrowdStrike host-based firewall solution to cover 11,700 endpoints within the district.
o The software must be compatible with existing operating systems, including windows/Linux. bids that are not compatible with our existing OS, or CrowdStrike infrastructure will be disqualified.
• Licensing:
o Provide flexible licensing options based on spring district total 11,700 endpoint count.
• Installation and configuration:
o Provide installation and configuration services for all supported endpoints.
o Ensure the solution is deployed in accordance with best practices to ensure maximum performance and protection.
• Training:
o Provide training sessions for IT staff on the deployment, configuration, and day-to-day management of the solution.
o Training materials should be provided in both digital and print formats. • Ongoing support and maintenance:
o Include details regarding your ongoing support model, including software updates, patches, and technical assistance.
• Reporting and analytics:
o Provide capabilities for real-time threat monitoring, incident response, and reporting of firewall activity and security incidents.
o These reports should be accessible via a web-based console or dashboard.
3. Palo alto networks advanced URL filtering subscription
• Provide palo alto networks advanced URL filtering subscription
o Supply the necessary subscriptions/licenses for palo alto networks advanced URL filtering to cover the required number of users and network devices.
o Ensure the subscription supports the district's current infrastructure and any anticipated future expansions.
o Bids that are not compatible with the district’s current palo alto infrastructure will be disqualified.
• Deployment and integration
o Provide end-to-end deployment of the palo alto networks advanced URL filtering solution, ensuring seamless integration with district existing IT infrastructure, including palo alto firewalls or any other network security appliances currently in place.
o Configure the solution to ensure proper filtering policies are in place, considering the needs of students, staff, and faculty.
• Custom policy configuration
o Customize filtering policies to block or allow access to specific categories of websites based on district unique needs.
o Configure whitelisting and blacklisting rules to allow trusted sites and block harmful or non-compliant sites.
o Provide the ability to apply different filtering rules for different user groups (students, staff, faculty).
• Real-time traffic monitoring and reporting
o Provide a dashboard for real-time monitoring of web traffic, filtering activity, and blocked requests.
o Enable detailed logging and reporting capabilities, including historical traffic data and compliance related reports.
o Allow administrators to generate customizable reports on web filtering activity for auditing and policy enforcement purposes.
• Training and knowledge transfer
o Provide training to district IT staffs on the configuration, management, and troubleshooting of the palo alto networks advanced URL filtering solution.
o Offer best practice recommendations for ongoing web filtering management. provide clear and comprehensive documentation for ease of use and troubleshooting.
• Ongoing support and maintenance
o Provide technical support services to address any issues with the solution, including troubleshooting, updates, and patches.
o Offer ongoing maintenance, including automatic updates of the URL filtering database and security intelligence feeds.
o Ensure access to palo alto networks support resources for escalation of issues as needed.
• Compatibility requirement:
o Equipment must be compatible with existing palo alto infrastructure.
o Bids that are not compatible with existing palo alto infrastructure will be disqualified.
4. CrowdStrike exposure management solution
• Provide the CrowdStrike exposure management solution
o Provide the necessary software to deploy CrowdStrike exposure management across all district endpoints, networks, and devices.
o Ensure compatibility with district existing IT infrastructure, including endpoints running on windows, macOS, and mobile operating systems.
• Licensing:
o Provide flexible licensing options based on spring district total 11,700 endpoint count.
• Deployment and integration
o Deploy and configure the CrowdStrike exposure management solution, integrating IT with district
current security tools and infrastructure.
o Ensure seamless integration with existing security information and event management (SIEM) tools, network security appliances, identity management systems, and CrowdStrike EDR.
• Risk and vulnerability assessment
o Provide comprehensive risk and vulnerability assessment tools to identify exposed assets, vulnerabilities, and gaps in district security posture.
o Enable continuous scanning for new vulnerabilities and threats, providing actionable insights and remediation steps to minimize potential security risks.
• Continuous monitoring and alerts
o Provide real-time monitoring of exposures and vulnerabilities, ensuring district IT team is notified of potential threats in a timely manner.
o Enable configurable alerts for critical vulnerabilities and potential exposure risks.
• Incident response and mitigation
o Enable automated or manual mitigation actions to address security vulnerabilities and minimize exposure to threats.
o Provide tools for documenting and responding to security incidents related to exposure management, including workflows for incident resolution.
• Training and knowledge transfer
o Provide training for district IT team to ensure they are equipped to manage the CrowdStrike exposure management solution effectively.
o Provide user documentation, troubleshooting guides, and best practices for managing vulnerabilities and exposures.
• Ongoing support and maintenance
o Offer ongoing technical support, software updates, threat intelligence updates, and patches to ensure the solution remains up-to-date and effective. o Provide 24/7 support to address any issues that arise with the exposure management solution.
• Compatibility requirement:
o Equipment must be compatible with existing CrowdStrike infrastructure.
- Contract Period/Term: 1 year
- Questions/Inquires Deadline: May 15, 2025
