AAT Managed Service Penetration Testing
Tender ID: 543556
Tender Details
Tender Description
The AAT is embarking of a program of works to replace its aging network and network security service architecture, more commonly known in Federal Government as a Secure Internet Gateway (SIG). We are working with an IRAP assessed Managed Service Provider (MSP) to assist us design, deploy, test, and migrate network services from our old architecture to a next generation architecture leveraging the technology stack commonly referred to as Secure Access Service Edge (SASE). Furthermore, as part of this holistic security solution uplift program, the AAT has also implemented a Security Incident and Event Management (SIEM) system which is co-managed with a separate MSP
The AAT is seeking qualified suppliers (CREST certified) to conduct Penetration Testing. The objective of the Penetration Testing is to provide assurance to the AAT on the performance of its cyber security controls by testing selected areas:
- The micro secure internet gateways located at each AAT branch office
- The remote worker components; Windows 10 endpoint and Fabric client (including VPN)
- The AWS and Azure secure cloud internet & email gateway components
- The AAT’s Security Event and Incident Management (SIEM) platform
Estimated start date: Tuesday, 02 January 2024
Initial contract duration: 3 to 6 months
Extension term: Not applicable
Location of work: NSW, VIC
Location
Victoria : Barwon South West : Gippsland : Grampians : Hume : Loddon Mallee : Melbourne
