Description of the procurement
Córas Iompair Éireann (C.I.É.) is the statutory organisation with responsibility for the provision and development of public transport services in Ireland. It exercises its responsibilities through the following three wholly owned subsidiary operating companies:
• Iarnród Éireann
• Bus Éireann
• Bus Átha Cliath
CIÉ and its subsidiary operating companies wish to procure a modern Endpoint Protection Platform (EPP) solution, that includes Endpoint Detection and Response (EDR) functionality as an integral component of the overall solution.
At present, there are approximately 3,600 user endpoints, and 500 servers across the CIÉ Group of Companies estate.
The proposed solution should, at a minimum:
• Support the following device operating systems:
• Windows 10 and later,
• Windows Server 2012 / R2 and later, including Microsoft Azure Virtual Machines,
• Be easy to use with minimum training required,
• Can natively integrate network, endpoint, and cloud data to prevent sophisticated attacks,
• Include behavioural detection and automated blocking of ransomware, streamlining detection and eliminating the need for manual analysis,
• Can gather and retain endpoint activity metadata in a centralised storage location for later examination,
• Support endpoint and security operations by providing centralised management of policy setting, reporting, and alerting,
• Support anti-malware operations with a strong EPP alerting and reporting function,
• Can integrate with other security and operations tools,
• Aligns malicious activity detections within the MITRE ATT&CK framework and classifies detected attacks based on the techniques described in this framework,
• Have various Attack Surface Reduction techniques to limit endpoints exposure and vulnerability to attacks,
• Include pre-execution protection that leverages static file analysis techniques, along with peri-execution techniques while a binary is executing.