Managed Detection & Response Services

Background
Cuyahoga County is dedicated to protecting its digital assets and ensuring the security of sensitive data. With an increasing number of cyber threats, the County aims to procure a Managed Detection and Response (MDR) solution that will offer real-time monitoring, rapid response to threats, and ongoing improvements in cybersecurity operations.

Work Details
The selected provider will monitor, detect, analyze, and respond to potential cybersecurity threats across Cuyahoga County's internal security logging systems (Gravwell), XDR (Microsoft Defender), and SIEM (Azure Sentinel), utilizing the full Microsoft security stack.

The MDR service provider will be responsible for:
1. **Security Monitoring and Threat Detection**: Continuous monitoring of internal security logging systems including firewalls, IDS/IPS, and endpoint protection platforms; integration with Azure Sentinel for centralized logging; utilization of Microsoft Defender for Endpoint and other Microsoft security tools.
2. **Incident Response**: 24/7 incident response services; collaboration with internal IT teams; post-incident analysis.
3. **Threat Intelligence**: Use of threat intelligence feeds; regular updates to detection rules.
4. **Security Operations Center (SOC)**: Operation of a SOC for monitoring and response activities; regular communication with internal teams.
5. **Compliance and Reporting**: Ensuring compliance with regulations; regular reporting on threat detection summaries and performance audits.

Period of Performance
The contract is anticipated to commence following the selection process in June 2025, with a budget not exceeding $200,000.

Place of Performance
Cleveland, Ohio.

Bidder Requirements
Vendors must demonstrate expertise in Microsoft security technologies including Azure Sentinel; proven experience delivering MDR services for government agencies; capability to provide 24/7 SOC operations; understanding of compliance requirements relevant to local government operations; ability to provide references and case studies from past engagements.