Opportunity
Coldwater Civicplus #R5-2023-77-0036r
City of Coldwater Solicits Managed Vulnerability Management Services for Cybersecurity
Posted
June 17, 2026
Respond By
July 06, 2026
Identifier
R5-2023-77-0036r
NAICS
541512, 541513, 541519
The City of Coldwater, Michigan, is seeking a Managed Service Provider (MSP) to deliver a fully managed vulnerability management service to strengthen its cybersecurity posture. - Government Buyer: - City of Coldwater, Michigan (IT Department) - Scope of Services: - Fully managed vulnerability management service covering approximately 650 IT assets (servers, workstations, network devices, firewalls, cloud resources, SaaS, and IoT devices) - Continuous vulnerability identification (internal and external scanning), risk-based prioritization, remediation tracking, and validation - Executive and technical reporting, including monthly analyst-led review meetings and executive summaries - Integration with SIEM platforms, SOC workflows, and ticketing systems - Asset discovery, including unmanaged systems, and ongoing tuning/optimization of scanning coverage - Key Requirements: - Commercial or enterprise-grade platform - Encryption, multi-factor authentication, role-based access control, and audit logging - Compliance with NIST Cybersecurity Framework, CIS Controls, and CJIS (where applicable) - Vendors must provide implementation methodology, references, and demonstrate experience with public-sector clients - Funding and Performance: - Funded by the State and Local Cybersecurity Grant Program (SLCGP) - All services and deliverables must be completed and invoiced by the end of the grant period - No specific OEMs or vendors are named in the solicitation, but solutions must be commercial or enterprise-grade and support integration with common security operations tools.
Description
The City of Coldwater is seeking proposals for a fully managed vulnerability management service to provide continuous visibility, prioritization, tracking, and reporting of cybersecurity vulnerabilities across the City's IT environment. The service aims to minimize internal workload while maintaining strong security posture and operational oversight. The project is funded through the State and Local Cybersecurity Grant Program (SLCGP) and includes requirements for integration with SIEM platforms, SOC workflows, and ticketing systems. Vendors must comply with federal, state, and local grant requirements and provide detailed pricing, implementation, and compliance information.