Inactive

The RFI response date, page limit, and font size are updated. See attached RFI for details. This Request for Information (RFI) is issued as Unrestricted and all interested vendors may respond. The U.S... The RFI response date, page limit, and font size are updated. See attached RFI for details. This Request for Information (RFI) is issued as Unrestricted and all interested vendors may respond. The U.S. Securities and Exchange Commission (SEC) Security Operations Center (SOC) requires expert services for cybersecurity operations in the areas of incident response, analysis and enterprise security infrastructure support. The SEC SOC mission is to detect, analyze, prioritize, contain and remediate cyber-attacks. Additionally, the SEC SOC operates and maintains the security technologies used to defend against cyber-attacks such as intrusion detection/prevention systems (IDS/IPS), firewalls, data loss prevention (DLP) capabilities, security log aggregation systems, and incident case management systems. The SEC SOC also maintains situational awareness of current and emerging cyber-threats targeting SEC interests and implements counter-measures as appropriate. The SEC Office of Information Technology (OIT) is requesting informed responses on issues related to SOC capabilities and operations. The following questions are presented to assist in framing the organization and function of the SEC SOC, but should not be construed as the extent of our interest. OIT invites comments on the full range of issues related to the operations and functions of a SOC capability. Please review the attached RFI for details.