OSFI seeks ransomware tabletop exercise for incident management validation.
The Office of the Superintendent of Financial Institutions (OSFI) requires a ransomware tabletop exercise to validate its corporate incident management capability, which incorporates Incident Command System principles. The exercise will test operational readiness across all layers of the revised incident management function, focusing on a ransomware scenario. This procurement is limited to 28 pre-qualified SBIPS Supply Arrangement holders under Tier 1 for Security management in the National Capital Region. Bidders must hold a Secret security clearance at both corporate and resource levels. The contract is valued unknown, but the exercise is a single event with no implied duration.