Merx #6031051-

The Greater Toronto Airports Authority (GTAA) is seeking proposals for a comprehensive offensive security program to assess and enhance its cybersecurity posture. - Buyer: Greater Toronto Airports Authority (GTAA) - Scope: Offensive security (OS) program involving controlled adversary simulation exercises - Evaluates effectiveness of cybersecurity monitoring, detection, investigation, and response - Covers enterprise IT networks, cloud environments, identity systems, operational technology, passenger systems, and vendor integrations - Objective: Measure and improve GTAA’s pay-for-performance cybersecurity operations model - No specific OEMs or vendors are named in the solicitation - Unique requirements: - Mandatory Non-Disclosure Agreement (NDA) required to access RFP documents - Emphasis on realistic, sophisticated threat simulation across diverse airport technology systems - Place of performance: Toronto, Ontario, Canada (GTAA facilities)

The Greater Toronto Airports Authority (GTAA) is seeking proposals for a cybersecurity offensive security program designed to evaluate the effectiveness of their monitoring systems and operational teams. The program will simulate sophisticated cyber adversary behaviors to assess vulnerabilities across various IT and operational technology platforms within the airport environment. The objective is to measure detection, investigation, and response capabilities to improve cybersecurity operations aligned with evolving threats to aviation and critical infrastructure. The solicitation includes a pay-for-performance model and requires a signed Non-Disclosure Agreement for access to documents.