Title
a. Approve and authorize the Contracts/Purchasing Officer to sign an End User Agreement for the Qualys Guard tool application with Qualys, Inc., on behalf of the Information Technology Department, in the amount of $130,645.00 for Fiscal Year (FY) 2016-17; and
b. Accept non-Standard provisions as recommended by the Director of Information Technology.
Body
RECOMMENDATIONS:
It is recommended that the Board of Supervisors:
a. Approve and authorize the Contracts/Purchasing Officer to sign an End User Agreement for the Qualys Guard tool application with Qualys, Inc., on behalf of the Information Technology Department, in the amount of $130,645.00 for Fiscal Year (FY) 2016-17; and
b. Accept non-Standard provisions as recommended by the Director of Information Technology.
SUMMARY
This agreement with Qualys, Inc. will provide for an information security vulnerability, identification, and remediation system to provide vulnerability management services for the County's use. This service assists the County in identifying new software and service vulnerabilities immediately, in order to proactively remediate them to protect County information assets against attack. This ability is a requirement of several regulations applicable to the County, including HIPAA, ISO-27002, MEDS and NIST. The County has utilized Qualys for the past eleven years, and it has been the primary reason for a significant drop in the number of vulnerabilities present on County workstations, servers, and network devices due to highly accurate vulnerability assessments and remediation information available to County network administrators.
DISCUSSION:
Since September of 2005, the County Information Technology Department (ITD) has utilized the QualysGuard scanning tool and service, first under an initial trial agreement, and for the past ten years as a paying customer of Qualys. This tool has provided ITD with on-demand ability to scan County Information Technology (IT) assets fo...
Click here for full text