CITY COUNCIL AGENDA ITEM
ACTION REQUESTED:
title
Approve the award of Cooperative Procurement 24-223, Rapid7 Managed Detection and Response, to Carahsoft Technology Corporation for an amount not to exceed $120,598.94 and for a one-year term
body
DEPARTMENT: Information Technology
SUBMITTED BY: Jacqueline Nguyen, Director
BOARD/COMMISSION REVIEW:
N/A
BACKGROUND:
Technology is constantly evolving, and so are the cybersecurity challenges facing organizations. According to an article published by Microsoft, the top five cybersecurity challenges facing organizations are:
1. Managing the increased risk of ransomware/cyber-extortion
2. Ensuring cloud resources, workloads, and apps are securely configured
3. Gaps in protection across hybrid, multi-cloud, and multi-platform environments
4. Challenges in recruiting qualified security professionals
5. Enabling end-user productivity without sacrificing security
To help address these and other cybersecurity challenges, for the past several years the IT Department has procured Managed Detection Response (MDR) service from Rapid7. The City has benefited from the additional on-call and day-to-day assistance provided by industry experts on cybersecurity issues.
DISCUSSION:
The purpose of this procurement is to renew MDR services from Rapid7.
Rapid7’s MDR service brings the technology and experience needed to detect and respond to targeted interactive threats using leading threat detection methodologies. Once a potential threat is identified through technology or analysis, Rapid7’s 24/7 Security Operations Center (SOC) validates the event before generating an alert detailing the event in the City’s environment. When the event is an interactive breach, the Rapid7 Incident Escalation team is ready to investigate immediately.
Additionally, the City gains access to Rapid7’s experts for day-to-day activities, and staff can benefit from collaborating with these experts on issues and potential threats. This is where MDR differs from the City’s Incident Response Retainer (IRR) with Cisco. MDR is designed primarily to support and address the day-to-day security operations with third-party experts. The IRR is designed primarily to enable an overwhelming response of third-party experts to a known security incident.
The City will partner with a Rapid7 Customer Advisor team who will learn about the environment, sensitive data, and incident response processes. This will enable Rapid7’s team to better operate as an extension of the City’s security team.
Staff has identified an approved cooperative contract, OMNIA EDU contract R191902, through Carahsoft Technology Corporation for this purchase.
The term of the contract is from October 19, 2024, to October 18, 2025.
FISCAL IMPACT:
CIP: N/A
Support services for cybersecurity initiatives are expensed to the account number listed below. The budget initially included $150,000 for this service, however, that portion was used to cover the prior year's renewal earlier in 2024. Given the critical nature of the MDR services, staff recommends the approval of the award, as there are sufficient funds in the General Fund allocation of the IT budget to cover the expense. Staff will continue to monitor expenditures to ensure compliance with budgetary guidelines.
|
Account Number |
Fund Description |
Total Budget Amount |
|
16101100-531309 |
General Fund |
$1,071,557 |