University of Minnesota Ionwave #10049.863863.JST Addendum 1

University of Minnesota Information Security Risk Assessments RFP

The University of Minnesota is seeking a vendor to conduct information security risk assessments across multiple departments: - Government Buyer: - University of Minnesota (higher education institution) - Products/Services Requested: - Professional services to perform up to 17 individual information security risk assessments - Assessments must adhere to ISO 27002/27005 standards - Standardized assessment method required for all departments - OEMs and Vendors: - No specific OEMs or vendors are named in the solicitation - Unique/Notable Requirements: - Strict compliance with ISO 27002/27005 information security frameworks - Ability to deliver consistent, standardized risk assessments across diverse university departments - All responses must be submitted electronically via the MBID system - Period of Performance: - Up to 24 months to complete all assessments

Description

This Request for Proposal (RFP) is issued by the University of Minnesota to find a vendor capable of assisting in identifying information security risks in accordance with ISO 27002/27005 standards. The scope includes conducting individual risk assessments for up to 17 departments over a 24-month period using a standardized method that documents relevant requirements from the ISO 27002/27005 framework. The RFP specifications must be viewed and responses submitted electronically through the MBID system. The contract involves professional services related to information security risk assessments.

View original listing