Managed Security Services (MSS)

What is Managed Security Services?

IT Security is an increasingly critical priority for state and local governments, requiring heightened awareness to malicious threats and an expanded focus on the technology protecting sensitive information. In addition to ensuring secure computing environments, government entities are under never-ending requirements to meet rising constituent needs, do more with less, and increase the value they deliver to the public.

To meet these needs, DIR introduced Managed Security Services (MSS) as a new offering within its Shared  Technology Services program to provide uniform and consistent management of state data security. Whether you're a state agency, institution of higher education, local government, or a public school district, MSS assists you in consolidating security services, meeting legislative security requirements, mitigating security risks, and filling gaps in skillsets to provide a secure computing environment for your business and to deliver more effective services for your constituents.

What Managed Security Services are Available?

Managed Security Services consists of three main service components: Security Monitoring and Device Management, Incident Response, and Risk and Compliance. Each component contains a subset of security-related services to choose from to help meet your security needs.

Security Monitoring and Device Management

Important Note: If you are a participant in DIR's Data Center Services (DCS) program, you already receive enterprise security services within the Consolidated Data Centers (CDCs) and DCS Public Cloud environment. However, MSS offers additional security-related services to meet your individual business needs. See the MSS FAQ and MSS Service Matrix for additional details and which MSS services are available for DCS customers.

Manages and monitors security devices in your environment, SMDM services include:
  • Endpoint Management System
  • Intrusion Detection System/Intrusion Prevention System
  • Host-Based Intrusion Detection System/Host-Based Intrusion Prevention System
  • Malware Detection Systems/Malware Prevention Systems
  • Managed Firewall Services
  • Managed Web Application Firewall Services
  • Security Information and Event Management
  • Security Operations Center Services
  • Threat Research
Incident Response
Assists in the event of a security incident in your IT environment. Incident Response services include:
  • Security Incident Management
  • Digital Forensics
  • Incident Response Preparedness
Risk and Compliance
Assists in identifying, remediating, monitoring, and managing enterprise risks. Services include:
  • Penetration Testing
  • Risk Assessment
  • Cloud Compliance Assessment
  • Vulnerability Scanning
  • Web Application Scanning

How Do I Know if I’m an Eligible MSS Customer?

Public entities within the state of Texas including state agencies, counties, local government offices, or public education entities are all potentially eligible to receive Managed Security Services.

For more information on eligibility and legal citations, see the Eligibility Overview page on DIR’s website. 

How Can I Order Managed Security Services?

For DCS Customers
If you are currently a DCS customer and would like to receive Managed Security Services, you can submit a Request for Solution (RFS) request in the Service Catalog on the Shared Technology Services Portal. 

For non-DCS or non-DIR Customers
If you are not currently a DCS customer or a customer with DIR, you can submit a request through DIR by emailing

Additional Information

For DCS Customers
If you are currently a DCS customer, see the MSS Service Offerings Portal page on the Shared Technology Services Portal for additional information. You can also contact your DIR Enterprise Relationship Manager (ERM). 

For non-DCS or non-DIR Customers
If you are not currently a DCS customer or a customer with DIR, contact DIR at