Orange County NC Website
Browse       Search
89 <br /> Orange County August 8,2024 <br /> ASTRO 25 Managed Detection and Response 24-177976/Cybersecurity Services <br /> Customer Responsibilities <br /> • Provide sufficient information to allow Motorola Solutions technical support agents to diagnose <br /> and resolve the issue. <br /> Limitations and Exclusions <br /> Technical support is limited to the implementation and use of the ActiveEye Security Management <br /> platform and does not include use or implementation of third-party components. <br /> 2.3.4 Incident Response <br /> An Indicator of Compromise (IoC) is an observable event that Motorola Solutions Security Analysts <br /> have determined will jeopardize the confidentiality, integrity, or availability of the system. Examples of <br /> IoC include ransomware or malicious use of PowerShell. <br /> When an IoC is observed by the Security Analyst, Motorola Solutions and Customer will be responsible <br /> for the tasks defined in the following subsections. <br /> Motorola Solutions Responsibilities <br /> • Upon the identification of an IoC, notify the Customer's documented contact and initiate the <br /> escalation plan. <br /> • Take documented, Customer approved actions in an attempt to contain an IoC to the extent <br /> enabled via Motorola Solutions managed technology. Communicate to the Customer any <br /> additional potential containment actions and incident response resources that can be taken <br /> across the Customer's managed IT infrastructure. <br /> • Perform investigation using the ActiveEye Managed Detection and Response integrated and <br /> enabled data sources in an initial attempt to determine the extent of an IoC. <br /> • Document and share IoC and artifacts discovered during investigation. Motorola Solutions <br /> services exclude performing on-site data collection or official forensic capture activities on <br /> physical devices. <br /> Customer Responsibilities <br /> • Maintain one named PoC to coordinate regular team discussions and organize data collection <br /> and capture across the Customer and Motorola Solutions teams. <br /> • If determined to be required by Customer, contract an Incident Response service provider to <br /> perform procedures beyond the scope of this Agreement such as forensic data capture, <br /> additional malware removal, system recovery, ransomware payment negotiation, law <br /> enforcement engagement, insurance provider communications, identify patient zero, etc. <br /> 2.3.5 Event Response and Notification <br /> Motorola Solutions will analyze events created and/or aggregated by the Service, assess their type, <br /> and notify the Customer in accordance with the following table. <br /> Statement of Work ®MOTOROLA SOLUTIONS <br /> Use or disclosure of this proposal is subject to the restrictions on the cover page. <br /> Motorola Solutions Confidential Restricted <br /> Page 2-5 <br />