cover
TO: Mayor Richard C. Irvin
FROM: Michael R. Pegues, Chief Information Officer
Leela Karumuri, IT Risk & Compliance Manger
DATE: March 16, 2020
SUBJECT:
Request approval for contract amendment on approved Resolution 19-175 dated June 11, 2019 for IT Risk Assessment, Data Defenders, LLC. Corporate Headquarters: 111 W. Jackson Blvd., Suite 1700 Chicago, IL 60604 in the amount not to exceed $137,550.00.
PURPOSE:
Threat activities against local municipalities have significantly escalated over the past month causing municipalities such as New Orleans, LA. and Pensacola FL. to report major cybersecurity and ransomware attacks against their technology infrastructures and business operations. Additionally, threat activities from state-based actors against U.S. based targets have significantly increased as well, evidenced by traffic from unknown IP addresses originating from countries like Iran to the City of Aurora's technology infrastructure. Most recently, the coronavirus disease: COVID-19 outbreak was declared a Public Health Emergency of International Concern on 30 January 2020.
Recognizing the increased level of potentially malicious activity against City of Aurora technology infrastructure, business continuity and disaster recovery planning has generated concerns by executive management and municipal leaders that potentially malicious threat sources are conducting reconnaissance activities and affecting threats against city infrastructure. This recognition has translated into the need to prioritize and accelerate efforts to develop and implement the necessary cybersecurity related processes and procedures, reduce the risk footprint and position the city to appropriately and effectively handle cyber-related incidents.
The City's Cybersecurity Team is recommending additional Internal Network Penetration Testing, Web Application Testing and a Disaster Recovery Plan. The objective will strengthen and increase the level of security and protective counterme...
Click here for full text