Specifications include, but are not limited to: Minnesota IT Services seeks to establish a Master Contract Program where multiple vendors are able to provide Project IT Risk Assessments, IT Project Audits, and Technology Solution Technical Reviews as required for information and telecommunications technology project's pursuant to state statute and the organization's needs. Master Contract Program to conduct IT Project Risk Assessments, IT Project Audits, and Technology Solution Technical Reviews. a. Contracting: The Contractor will work closely with MNIT staff and Third Party vendor staff to complete work orders executed under this master agreement. Work order contracts will begin on the date stated in the work order contract or upon full execution of such contract, whichever is later, and will be completed upon delivery of a final risk assessment, project audit, or technical review report. b. Planning and preparation: Prior to executing work, the Contractor shall submit a risk assessment plan, audit plan, and/or technical review plan with detail deemed sufficient by the State of Minnesota Chief Information Officer or delegate. IT Project Audit, IT Project Risk Assessment, and Technical Review objectives, scope, and benchmarks shall be defined and agreed upon by all parties. c. Research: The Contractor will work closely with MNIT staff and Third Party vendor staff to assess and gain an in-depth understanding of applicable areas as detailed in the work order contract. d. Reporting: Contractor shall prepare a Report, which shall become the sole property of the State of Minnesota per Minnesota Statute 16E. The risk assessment, audit, and/or technical review report shall contain, but is not limited to, the following sections: 1. Overview 2. Methodology 3. Findings 4. Corrective Recommendations 5. Supporting Documentation e. Follow-up: Based on the severity of the findings, the State reserves the right to request additional services after corrective actions have commenced to determine their effectiveness.