Cybersecurity Vulnerability Analysis Services

The Suffolk County Water Authority in Oakdale, New York is seeking a vendor to conduct and annually maintain a Cybersecurity Vulnerability Analysis. The agency needs to assess risks to its Information Technology, Operational Technology, and connected Information Technology systems while improving visibility into its Operational Technology assets. Through this initiative, the agency aims to identify cybersecurity gaps, evaluate the likelihood of exploitation, and assess potential operational and public-health impacts. The scope of work requires the selected vendor to establish a defensible, regulator-ready analysis and develop formal cybersecurity governance documentation, including incident response capabilities. The project covers network architecture, asset inventory and management, and logging and monitoring capabilities. The vendor must document existing security controls, identify compensating controls, and provide a prioritized mitigation roadmap with actionable recommendations. Eligible bidders must be onshore organizations based entirely in the United States. The agency requires all project work to be performed offsite. The contract period will span one year, and the agency is currently looking for proposals to determine the budget. Bidders must submit all questions regarding this opportunity no later than June 12, 2026.