Pre-Breach Management Services- Ability to respond to discovery of a potential breach within 24 hours - Vendor must comply with all applicable federal, state, and industry regulations including Payment Card Industry Data Security Standards, HIPAA, and data breach laws. - Ability to perform a risk assessment of the University’s protection of sensitive data. - Provide suggested changes to policies and procedures for preventing data breaches.