Specifications include, but are not limited to: 1. Primary Administrative Control: The City of Charleston must maintain primary administrative control with full accessto delegate roles. The solution must provide comprehensive role-based access control (RBAC). 2. StateRAMP and FedRAMP Authorization: Solution must be both StateRAMP and FedRAMP Authorized for Moderate or High impact levels. 3. Zero Trust Architecture: Solution must use a Zero Trust proxy-based architecture providing User to Application mapping. 4. Digital Experience Monitoring (DEM): Solution must provide an integrated Digital Experience Monitoring (DEM) service. 5. Inbound Connection Avoidance: Solution must provide the ability to avoid inbound connections to the private network in order to access private applications. 6. BGP Routing Changes: The solution must not require BGP Routing changes. 7. Microsoft 365 Integration: Vendor must be a Microsoft 365 Networking Partner, support oneclick configuration of M365 with automatic updates and have integrated support for Microsoft Defender for Cloud Apps. 8. Policy Enforcement: Solution must inspect internet-bound traffic and apply policy enforcement in the continental U.S. without hair-pinning. 9. Compliance with TIC 3.0 and CJIS: Solution must be compliant with TIC 3.0 CISA guidance for telework and branch office use cases. Solution must be compliant with CJIS with a supporting 3rd party attestation. 10. Unified Policy Engine: Solution must provide a single unified policy engine for controlling access to all applications regardless of the technology used by the end user: workstations, virtual desktops, mobile devices, or browsers.
