Specifications include, but are not limited to: provide implementation and maintenance/support for this new solution desired by the County; -The software must be a vendor risk management solution -The solution will allow for self-service initiated collaboration using the questionnaires/forms -The solution will have the capability to create workflows to route assignments based on the questionnaire/form selected -The solution must allow for access control management capabilities between the internal team, County departments, and external parties -The solution will be able to keep a record of all activities through tracking/logging -The solution will allow for emails/alert notifications to be sent from within the platform -The solution will allow for download/upload capabilities and maintain a repository of support documents related to the different collaboration projects -The solution will offer built-in dashboards and out-of-the-box reporting to allow for key performance indicators and metrics -The solution will offer integration/API (application programming interface) capabilities -The solution will offer single sign-on capabilities -The solution has the capability to manage compliance mappings of controls (ex. NIST, HIPAA, PCI DSS, etc.) with the ability to tailor standard control questions -The solution must be cloud-based; and -The solution must be Commercially-Off-The-Shelf (COTS) software which requires no more than 40 hours or 5 working days of installation assistance and training to operationalize the solution.
