SOHT is looking for an organization to provide automated website bot protection for its main website.
It wants a solution powered by artificial intelligence (AI) or automation that doesn’t require the manipulation of manual rule sets to be effective.
Posted in a bid requestSOH looks forward to protecting its main domain sydneyoperahouse.com and any subdomains from denial of service, account takeover, API abuse, system hijacking, web and payment content scraping and credit card fraud.
The bidder must be an eligible applicant registered supplier in the NSW Government ICT Services Scheme.
SOH uses the Australian Cyber Security Center’s Core 8 Maturity Model and expects any organization to have a solid understanding of this model.
Solution features should include protection for AWS Lambda middleware for SOHT clients, SOHT whitelist control and options for both full website and dynamic website areas including transaction path, account areas, and online forms.
The solution is also expected to minimize the impact on load time for human users, minimize the impact on website performance, distinguish between good and bad bots in the bot activity report, and pre-defined and configurable alerts to alert if there is any bad bot activity.
According to SOH, their website receives about 60 million requests per year, so the solution must also be able to support surges in traffic.
SOH also expects the selected bidder to provide support dedicated to SOHT during deployment and implementation including product configuration and improvement.
The bidder should also provide ongoing system maintenance, training for administrators, as well as a solid line of communication in case of any problems.
The solution should also work with several content delivery networks including AWS Cloudfront, and should work with SOH’s existing portfolio of websites built on Drupal and hosted on Acquia in AWS.
The tender ends on July 21, and the specified contract will be awarded on August 30.
The contract is scheduled to start on October 1, 2023.