The vendor is required to provide expertise and support to k-12 school districts to build capacity around minimum cybersecurity needs.
- This includes development of a cybersecurity guide and workbook, an office cybersecurity strategic support report, pen testing/cyber hygiene testing strategy, implementing essential protective measures such as multifactor authentication, device administrative access, and network VPN and server security to safeguard school networks.
- A focus on vulnerable districts, this support will include strategic coordination and outreach on behalf of districts in partnership with educational service districts (ESDS), state information processing center (WSIPC), the k-12 statewide procurement department, other school districts, and state and federal agencies.
- Services will include:
• Provide consultation on office cybersecurity resources webpage
• Assist with establishing and assisting districts with statewide k-12 cybersecurity related communications
• District identification and outreach
• District assistance with planning and procurement process
• Virtual and on-location implementation support
• Strategic coordination and ongoing communications with key stakeholders
• State-wide strategic planning and meeting facilitation
- In year 1, contractor shall conduct outreach and needs assessments with educational service districts (ESDS) and partners to identify cybersecurity needs. contractor shall establish contact with target districts and perform a minimum needs assessment to understand their specific requirements.
- Based on these assessments, contractor shall develop guidelines and reasonable cybersecurity plans tailored for the identified districts.
- Contractor shall assist priority districts in deploying multi factor authentication (MFA) to enhance security
- Provide network analysis and review it administrator access audits to ensure proper security measures are in place
- Contractor shall collaborate with state agencies and other partners, including OSPI, k20, wea, WSIPC, ESDS, state CISO, WATECH, and CISA, to develop the OSPI cybersecurity strategic support recommendations document.
- In year 2 contractor shall create a multi-tiered cybersecurity guide and workbook to support districts in self-help initiatives.
- This guide shall be piloted with volunteer districts to gather feedback and make necessary adjustments.
- The cybersecurity guide and provide direct support to priority districts to ensure effective implementation.
- Contractor shall develop an initial strategy for penetration testing and cyber hygiene testing, partnering with the state CISO, WSIPC, and ESDS
- In year 3, contractor shall extend district support to maintain and enhance cybersecurity measures and provide final recommendations.
- Contract Period/Term: 2 years