DEPARTMENT: Information Technology
FILE TYPE: Consent Action
TITLE
title
Authorization To Amend Contract With NetSPI, LLC To Perform Security Audit On Dakota County's Internal, External And Cloud Environments
end
PURPOSE/ACTION REQUESTED
Authorize contract amendment with NetSPI, LLC to perform security audit on Dakota County's internal, external and cloud environments
SUMMARY
Due to the increased need to validate complete protection of Dakota County networks, the Information Technology Department (IT) desires to contract with a third party to perform an extensive security audit on the entire network. The consultant will also be conducting specialized reviews of the new cloud systems as well as reviewing standard workstation and laptop deployments. By resolution No. 22-490 (November 15, 2022) Dakota County IT was authorized to execute a contract with NetSPI, LLC for this security audit.
Dakota County recently implemented a new Enterprise Resource Planning (ERP) application on January 3, 2023, which manages Employee Relations/Payroll and financial transactions for the County.
The Information Technology department decided to reschedule the original security audit due to the impending ERP file conversion and implementation. Due to the size and quantity of data to be converted, staff did not want to risk that the conversion process would be slowed or stopped by the security audit. This change in timeline resulted in an additional charge for the audit. However, the change also allows for the testing of the new environment, focusing on the new integrations within weeks of their implementation. County staff thought it would be better to perform this testing in the new ERP environment.
RECOMMENDATION
recommendation
Staff recommend the County Board authorize an amendment to the contract with NetSPI, LLC in the amount of $12,000, plus a 10 percent contingency, for a total amount of $123,066 to conduct security audit testing for the County.
end
EXPLANATION OF...
Click here for full text