SettleRFP Hunter
See More RFPs

Managed Detection and Response, Security Information and Event Management and Security Orchestration, Automation and Response solution

Overview

Cybersecurity & Data Privacy
Virginia, United StatesPosted 6 months agoDeadline: January 9th, 2026

Fit Score

Settle Intelligence

Settle helps teams find, evaluate, and respond to public RFPs. We continuously surface new opportunities, score them against your company strengths, and draft proposal responses so you can focus on the work that wins business.

SUMMARY

Virginia seeks a five-year managed detection and response solution with SIEM, SOAR, advanced analytics, and multi-cloud integration.

DESCRIPTION

The state of Virginia is seeking a qualified service provider to deliver a comprehensive, five-year managed detection and response solution incorporating Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) capabilities. The desired platform must leverage machine learning and advanced analytics to process both structured and unstructured security and network data, providing actionable insights through an executive dashboard that illustrates the organization's security posture and improvements over time. Vendors should include examples of successful past engagements in their proposals.

The selected provider will play a key role in developing Standard Operating Procedures and incident response playbooks, while also offering continuous 24x7x365 monitoring and rapid response using existing tools in use, such as Freshservice, Office 365, ForgeRock Ping, Google Workspace, Fortinet, Solarwinds, Cisco, Oracle, F5, CrowdStrike EDR, Cloudflare, and others. The proposed solution should support at least 2000 data sources, including domain controllers, VPNs, firewalls, WAFs, IPS/IDS, operating systems, databases, and a variety of network devices.

Integration capabilities are essential, with required support for REST API, CEF, syslog, JSON, ODBC/JDBC, and file-based log inputs. The solution should offer robust multi-cloud support for environments such as AWS, Azure, and Google Cloud, providing out-of-the-box integration for cloud assets like databases (Aurora, MySQL, Postgres, MS SQL), web apps, flow logs, Active Directory, IAM, application gateways, and security groups, as well as custom integration options for other assets. Additionally, support for SaaS application integrations, including O365, Amazon Workspace, and Microsoft Desktop as a Service, is required. The solution must provide a centralized web interface to monitor and manage all integrated assets across diverse environments.

Similar RFPs