The URL can be used to link to this page

Home My WebLink AboutAddendum 1 - RFP - 10000 Unified Endpoint Management SolutionRFP 10000 Unified Endpoint Management Solution Addendum #1 Questions and Answers Page 1 of 5 ADDENDUM NO. 1 SPECIFICATIONS AND CONTRACT DOCUMENTS Description of RFP 10000: Unified Endpoint Management Solution OPENING DATE: 3:00 PM (Our Clock) June 25, 2024 To all prospective bidders under the specifications and contract documents described above, the following changes/additions are hereby made and detailed in the following sections of this addendum: Exhibit 1 – Questions and Answers Please contact Ed Bonnette, C.P.M., CPPB, Senior Buyer, at (970) 416-2247 or ebonnette@fcgov.com with any questions regarding this addendum. RECEIPT OF THIS ADDENDUM MUST BE ACKNOWLEDGED BY A WRITTEN STATEMENT ENCLOSED WITH THE PROPOSAL STATING THAT THIS ADDENDUM HAS BEEN RECEIVED. Financial Services Purchasing Division 215 N. Mason St. 2nd Floor PO Box 580 Fort Collins, CO 80522 970.221.6775 970.221.6707 fcgov.com/purchasing RFP 10000 Unified Endpoint Management Solution Addendum #1 Questions and Answers Page 2 of 5 1) I understand this request as to simply add centralized management while utilizing Windows as the OS. Is this correct? Answer: Windows (clients and servers) are the primary OS in the City environment, but there is also Mac, Redhat, and ChromeOS. Additionally, ideal solution would include central management for mobile platforms (iOS/Android), but MDM is not required. 2) Does the City utilize VDI in their environment? If Yes, which platform do you use? (VMWare, Citrix, AVD, etc.) Answer: The City has limited VDI deployed, primarily using RDS. There is a likely expansion to the use of AVD in the future. 3) Does the City of Fort Collins currently have an Office 365 or Office 365 Enterprise license in place? Answer: The City currently has O365 licensing in place. This is spread across G1, G3, and G5. 4) Would the City of Fort Collins accept a SOC 2 Type II cybersecurity attestation in lieu of the Appendix B: Cyber Vendor Questionnaire? Answer: Yes, SOC2 attestation will be accepted for initial proposal, but it is expected that the Appendix B be completed if selected for further consideration or as the vendor-of- choice. 5) Does the City currently have an EDR/MDR solution in place now? If so, which one? Answer: The City currently utilizes ArcticWolf as its MDR solution. 6) Does the City have a SIEM in place? Answer: The City currently utilizes ArcticWolf as our provider for SIEM services. 7) Please list the number of endpoints that need to be monitored. • # of workstations • # of laptops • # of firewalls • # of Saas applications • # of servers • # of email inboxes • Cloud platform? RFP 10000 Unified Endpoint Management Solution Addendum #1 Questions and Answers Page 3 of 5 Answer: This RFP is only requesting a proposal for endpoint management of clients and servers. Ideal solution can be scaled to mobile devices at a later time. Scope is, as stated in the RFP; 2,800 desktops/laptops (95%+ Windows, 5% macOS) and 750 Servers (90% Windows, 10% RHEL). 8) Does the City have a vulnerability scanning solution in place? If so, which one? Answer: The City currently utilizes the ArcticWolf Managed Risk product for vulnerability scanning. 9) Does the City have an Antivirus in place? If so, which one? Answer: The City currently uses Trellix Endpoint Security (ENS). 10) When does the City plan on making a vendor selection? Answer: See II.D. Anticipated Schedule on p.6 of the RFP. 11) When does the City plan on implementing this type of solution? Answer: The City would like to award the contract and begin implementation in 3rd quarter of 2024. 12) What solution does the City have in place today for endpoint management, and when is the incumbent solution set to expire? Answer: The City currently has no unified solution for endpoint management. Tools in use include SCCM, WorkSpaceOne, WSUS, etc. Currently no incumbent solutions impact this implementation. This implementation should be considered greenfield. 13) The proposed budget for this project is currently set at $250K, which includes licensing and implementation for the first year. Please help us understand how the City came up with this initial number. - Given the size of the City environment, is the City willing to entertain a solution that might exceed this set limit? - Does the proposed budget number reflect 10K endpoints, or is it based on what your current environment in? (Page 5) - 2,800 desktops/laptops (95%+ Windows, 5% macOS) - 750 Servers (90% Windows, 10% RHEL) Answer: This implementation is being assisted by Federal monies. This proposed budget is a ROM of the known capacity, including these monies. The City will entertain a solution which exceeds this limit, if justified by the implementation, solution, or return on investment. The cost of the implementation, will factor into the ranking and selection. The proposed budget is to cover the implementation of non-mobile endpoints, which the estimated numbers reflect. A fully scaled solution, if and when deployed to all mobile, in RFP 10000 Unified Endpoint Management Solution Addendum #1 Questions and Answers Page 4 of 5 future years (5 years), could approach 10k endpoints. The intent is to ensure the selected product, can scale as needed with the City. 14) What MDM (Mobile Device Management) solution does the City have in place today? a. When is the incumbent solution set to expire? b. How many city-issued mobile devices(iOS and Android) are currently deployed? Answer: The City is currently utilizing VMware WorkSpaceOne for some MDM functionality, but it has not been implemented across the entire landscape. (A) See answer #12, regarding incumbent solution. (B) The City currently has approximately 1350 iOS devices and 100 Android Devices. 15) Given the size and scope of the City’s environment, we would like to formally request an extension on this RFP. Answer: The City does not plan to extend the due date of 3:00 PM June 25, 2024 at this time. 16) Does you use a vulnerability scanner like Tenable, Qualys, Rapid7? Answer: See answer #8 17) Is there SLAs on patching endpoints? Answer: At this point, there is not an established SLA. Establishment of those SLAs/SLOs are an anticipated outcome of this implementation. 18) When patching servers, does services need to be stopped and started in certain order? Answer: Currently, in some edge-cases, yes. The City is working to eliminate these edge- cases, and would not be an expectation of the implementer to solve. 19) Do they want to manage endpoints/devices/servers both on the network and off? Answer: Yes. The City wants to ensure management of all endpoints, regardless of location. Ideal solution will be SaaS. 20) Are there security templates that need to be adhered to like CIS, NIST, HIPAA, DISTA STIG, etc? Answer: There are regulatory compliances that the City is expected to meet, like CJIS. There are no firm security template or hardening requirements at this time. 21) Once deployed and configured are you looking for an MSP to run this service or will you manage with your own internal resources? RFP 10000 Unified Endpoint Management Solution Addendum #1 Questions and Answers Page 5 of 5 Answer: The Cty is open to both models, but there is no firm expectation of year 2+ MSP services. 22) Is IOS and Android support a must have or a nice to have? Answer: This is desired at this time, but the capability can influence the product selection.