Provision of ICT Cyber Security Operations Centre (SOC) Services

The International Fund for Agricultural Development (IFAD), a specialized agency of the United Nations based in Rome, Italy, hereby solicits proposals for the Provision of ICT Cyber Security Operations Centre (SOC). The purpose of this RFP is to solicit comprehensive proposals from reputable and capable Security Operation Centre (SOC) service providers who can offer state-of-the-art technologies, skilled personnel, and a proven track record in delivering robust security services. The Security Operation Center (SOC) services shall protect IFAD IT Services and data from malicious actors, improve IFAD’s cybersecurity defenses and minimize risk. The SOC services will be required to: a. Provide, utilize and manage their choice of Security Information and Event Management (“SIEM”) and response automation capabilities, taking advantage of its full range of functions and integrations; b. Configure the SIEM to make it IFAD instance and guide IFAD to configure existing and future relevant IFAD IT assets in the public cloud, on-premises, or software as a service (“SaaS”), to ingest events and provide alert triage and incident escalation services correlated against an extensive range of threat intelligence and supported with extensive level of detail and guidance to IFAD IT technical teams; c. Automate a range of low-risk, high-frequency, automated mitigations across the various IFAD technology platforms; d. Provide enhanced client dashboard and extensive regular reporting on the performance of its service and cybersecurity activities; e. Adhere to industry best practices, standard and guidelines in the field of SOC detection and response services; f. Lead with exceptional account and service management, complemented with industry vision and expertise, to drive continuous service improvements. The Provider should have the ability to respond to high severity security incidents identified through monitoring and threat hunting activities. The Provider should have a team of experienced incident responders who are able to investigate and remediate security incidents in a timely and effective manner. Indicate number of responders and experience. The Provider should also have established incident response procedures and protocols to ensure consistent and effective incident response. INSTRUCTIONS ON HOW TO ACCESS RFP/ITB DOCUMENTS: In order to have access to the Tender Documents, it is necessary to register in UNGM portal (www.ungm.org). Please carefully read the instructions in the document attached to this tender notice (SEE THE MENU TAB ''DOCUMENTS'').