The Social Security Administration (SSA) is looking to boost their cybersecurity practices and prevent data breaches.
In their site, they recently filed for a request for information to simulate a data breach attack and says it needs help in installing and configuring the tool, as well as developing business processes and test cases for it.
SSA details a slew of requirements it seeks in response to its RFI, including how solutions can be customized to simulate attacks without infecting SSA’s underlying IT infrastructure and if they can be cloud-based and have FedRAMP certification, says a news report.
The RFI asks if potential solutions would use MITRE and National Institute of Standards and Technology frameworks, and if vendors could inform SSA about their solutions’ security control, reporting, and data exfiltration capabilities.