Wentzville R-IV School District Sealed Solicitation
Title: Information Security Development and Monitoring RFP-T-337
Deadline: 9/5/2023 10:00 AM (UTC-06:00) Central Time (US & Canada)
Status: Cancelled
Solicitation Number: RFP-T-337
Description: The purpose of this Request for Proposal (RFP) is to select;
A solution to provide scheduled and unscheduled assistance and support to the organization’s information technology leadership.
Documents:
| Documents as of 8/14/2023 |
|---|
| Login to view documents |
Addition 1
Posted: 9/5/2023
Type of Addition: In Review
Addition 2
Posted: 9/14/2023
Type of Addition: Cancellation Information
Overview: This will be re-bid.
Question 1
Posted: 8/22/2023
Question: Number of employees in an organization? What existing Endpoint protection product are you currently using, or would the district be implementing a new product? Please clarify the last bullet/sub-bullets of the RFP. Is the district looking for notification, updates and advisories on the sub-bullets of the RFP? Or is the district looking for management and implementation of the sub-bullets listed in the RFP? Timely notifications of products updates and advisories via email and/or conference call solution meets the needs that many cybersecurity insurance providers requires or organizations to obtain and maintained cybersecurity insurance and coverage such as Ensure multifactor authentication (MFA) implementation o Ensuring backups and disaster recovery solution implementation o Endpoint detection and response o Training and planning o Processes in place to segregate end-of-life software and hardware from the network and decommission in a timely manner o Ensuring email filtering tool implementation o Ensuring privileged access account security measures o Cyber Incident disaster recovery and incident response plan implementation o Ensuring proper domain control configuration on all managed endpoints.
Response: Number of employees in an organization? About 3000 What existing Endpoint protection product are you currently using, or would the district be implementing a new product? Sentinel One Please clarify the last bullet/sub-bullets of the RFP. Is the district looking for notification, updates and advisories on the sub-bullets of the RFP? Management of all the sub bullets in the RFP Or is the district looking for management and implementation of the sub-bullets listed in the RFP? Management of all the sub bullets in the RFP
Question 2
Posted: 8/23/2023
Question: Is the IT organization centralized or decentralized?
Response: Centralized
Question 3
Posted: 8/23/2023
Question: What is WSD’s budget for this project?
Response: The budget is adequate for the needs of the project.
Question 4
Posted: 8/23/2023
Question: For the external vulnerability scanning and penetration tests, approximately how many IPs are active?
Response: We have two different external ips x.x.x./24
Question 5
Posted: 8/23/2023
Question: For the internal network assessment, approximately how many IPs or subnets are in scope?
Response: 2 subnets x.x.0.0 each 1 subnet x.x.x/24
Question 6
Posted: 8/23/2023
Question: Are there documented IT policies, procedures, standards, and guidelines in place? If so, how many?
Response: yes.
Question 7
Posted: 8/23/2023
Question: How many fulltime IT staff are there?
Response: 30
Question 8
Posted: 8/23/2023
Question: For pricing, can vendors provide an hourly rate for all services listed within the RFP?
Response: No.
Question 9
Posted: 8/23/2023
Question: The RFP requests “initial and ongoing assessments, with regularly scheduled remote and/or onsite meetings.” What is the scope of the initial assessment?
Response: Complete Internal and external. May be done remotely.
Question 10
Posted: 8/23/2023
Question: Is a formal incident response plan in place?
Response: No.
Question 11
Posted: 8/23/2023
Question: 1. I see you have a large technology staff, will they be used as onsite support for this contract? 2. What BCDR solution do you currently have in place, and will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? 3. This is not explicitly covered in the RFP, but do you have a firewall solution? If so, will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? 4. Do you have a count on how many servers, switches, APs, printers, and any other network devices will need to be managed? 5. Regarding your 1:1 initiative, do you want these devices to be managed as well? If so, how many devices are there?
Response: 1. I see you have a large technology staff, will they be used as onsite support for this contract? Yes 2. What BCDR solution do you currently have in place, and will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? We will use our own 3. This is not explicitly covered in the RFP, but do you have a firewall solution? If so, will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? We will use our firewall 4. Do you have a count on how many servers, switches, APs, printers, and any other network devices will need to be managed? No at this time 5. Regarding your 1:1 initiative, do you want these devices to be managed as well? If so, how many devices are there? No
Question 12
Posted: 8/24/2023
Question: How many Windows, Mac, Linux, and Chrome machines do you have?
Response: approximately 20,000
Question 13
Posted: 8/24/2023
Question: How many Windows, Mac, Linux and Chrome machines are staff and student?
Response: Approximately 17000 students and 3000 staff
Question 14
Posted: 8/24/2023
Question: Do you have MFA in place now and if so, what is it and how many devices is it on?
Response: Yes.
Question 15
Posted: 8/24/2023
Question: Are you running MFA on Chrome devices or plan to?
Response: No
Question 16
Posted: 8/24/2023
Question: Do you have disaster recovery in place now or do we need to provide the hardware for it?
Response: No need to supply hardware
Question 17
Posted: 8/24/2023
Question: Do you have any email filtering in place now, if so, what is it?
Response: Gmail
Question 18
Posted: 8/24/2023
Question: Of the 20,000 total devices, how many are Chrome?
Response: An estimated 12,000
Posted: 9/5/2023
Type of Addition: In Review
Posted: 9/14/2023
Type of Addition: Cancellation Information
Overview: This will be re-bid.
Posted: 8/22/2023
Question: Number of employees in an organization? What existing Endpoint protection product are you currently using, or would the district be implementing a new product? Please clarify the last bullet/sub-bullets of the RFP. Is the district looking for notification, updates and advisories on the sub-bullets of the RFP? Or is the district looking for management and implementation of the sub-bullets listed in the RFP? Timely notifications of products updates and advisories via email and/or conference call solution meets the needs that many cybersecurity insurance providers requires or organizations to obtain and maintained cybersecurity insurance and coverage such as Ensure multifactor authentication (MFA) implementation o Ensuring backups and disaster recovery solution implementation o Endpoint detection and response o Training and planning o Processes in place to segregate end-of-life software and hardware from the network and decommission in a timely manner o Ensuring email filtering tool implementation o Ensuring privileged access account security measures o Cyber Incident disaster recovery and incident response plan implementation o Ensuring proper domain control configuration on all managed endpoints.
Response: Number of employees in an organization? About 3000 What existing Endpoint protection product are you currently using, or would the district be implementing a new product? Sentinel One Please clarify the last bullet/sub-bullets of the RFP. Is the district looking for notification, updates and advisories on the sub-bullets of the RFP? Management of all the sub bullets in the RFP Or is the district looking for management and implementation of the sub-bullets listed in the RFP? Management of all the sub bullets in the RFP
Posted: 8/23/2023
Question: Is the IT organization centralized or decentralized?
Response: Centralized
Posted: 8/23/2023
Question: What is WSD’s budget for this project?
Response: The budget is adequate for the needs of the project.
Posted: 8/23/2023
Question: For the external vulnerability scanning and penetration tests, approximately how many IPs are active?
Response: We have two different external ips x.x.x./24
Posted: 8/23/2023
Question: For the internal network assessment, approximately how many IPs or subnets are in scope?
Response: 2 subnets x.x.0.0 each 1 subnet x.x.x/24
Posted: 8/23/2023
Question: Are there documented IT policies, procedures, standards, and guidelines in place? If so, how many?
Response: yes.
Posted: 8/23/2023
Question: How many fulltime IT staff are there?
Response: 30
Posted: 8/23/2023
Question: For pricing, can vendors provide an hourly rate for all services listed within the RFP?
Response: No.
Posted: 8/23/2023
Question: The RFP requests “initial and ongoing assessments, with regularly scheduled remote and/or onsite meetings.” What is the scope of the initial assessment?
Response: Complete Internal and external. May be done remotely.
Posted: 8/23/2023
Question: Is a formal incident response plan in place?
Response: No.
Posted: 8/23/2023
Question: 1. I see you have a large technology staff, will they be used as onsite support for this contract? 2. What BCDR solution do you currently have in place, and will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? 3. This is not explicitly covered in the RFP, but do you have a firewall solution? If so, will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? 4. Do you have a count on how many servers, switches, APs, printers, and any other network devices will need to be managed? 5. Regarding your 1:1 initiative, do you want these devices to be managed as well? If so, how many devices are there?
Response: 1. I see you have a large technology staff, will they be used as onsite support for this contract? Yes 2. What BCDR solution do you currently have in place, and will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? We will use our own 3. This is not explicitly covered in the RFP, but do you have a firewall solution? If so, will this solution continue to be utilized during the contract or would you prefer that the contract vendor use their own solution? We will use our firewall 4. Do you have a count on how many servers, switches, APs, printers, and any other network devices will need to be managed? No at this time 5. Regarding your 1:1 initiative, do you want these devices to be managed as well? If so, how many devices are there? No
Posted: 8/24/2023
Question: How many Windows, Mac, Linux, and Chrome machines do you have?
Response: approximately 20,000
Posted: 8/24/2023
Question: How many Windows, Mac, Linux and Chrome machines are staff and student?
Response: Approximately 17000 students and 3000 staff
Posted: 8/24/2023
Question: Do you have MFA in place now and if so, what is it and how many devices is it on?
Response: Yes.
Posted: 8/24/2023
Question: Are you running MFA on Chrome devices or plan to?
Response: No
Posted: 8/24/2023
Question: Do you have disaster recovery in place now or do we need to provide the hardware for it?
Response: No need to supply hardware
Posted: 8/24/2023
Question: Do you have any email filtering in place now, if so, what is it?
Response: Gmail
Posted: 8/24/2023
Question: Of the 20,000 total devices, how many are Chrome?
Response: An estimated 12,000