Item:
Title
Budget Ordinance Amendment No. 20BCC000061 appropriating General Fund Balance ($190,562.46) to fund a third-party cyber security monitoring service contract per National IPA/Omni Partners 2018011-02 public sector agreement
Body
Date of BOCC Meeting: May 26, 2020
Request for Board Action:
Agenda Text
On March 6th, Durham County experienced its first ransomware attack. During the investigation, it was determined the attack was difficult to discover with tools alone. It is recognized the tools require individuals to continuously monitor the county computing environment for malicious activities. The constant awareness of the environment will greatly improve the Mean-Time-to-Detect (MTTD) and the Mean-Time-to-Respond (MTTR) to malicious activities. Therefore, IS&T is looking to have a third-party to monitor the computing environment 24x7.
The security monitoring service will also continuously monitor our security posture and look for improvements to reduce the likelihood of incidents like the one in March from happening in the future. In addition, the service will assist, in the event of something occurs again, with investigations of security events and identify the root cause.
Per National IPA/Omni Partners 2018011-02 public sector agreement, Service contract for 24x7 security monitoring in the amount of $190,562.46 is funded through the General Fund Balance.
The Board is requested to authorize the County Manager to enter into a collaborative agreement with for security monitoring in the amount of $190,562.46 per National IPA/Omni Partners 2018011-02 public sector agreement for the IS&T Services team and give the County Manager authority to sign subsequent renewals.
Alignment with Strategic Plan: Strategic Goal 5 - accountable, efficient, and visionary government
Resource Persons: Greg Marrow, Chief Information Officer; Lyvon Garth
County Manager's Recommendation: The County Manager recommends that the Board approve Budget Ordinance ...
Click here for full text