IT Master Plan, Disaster Recovery Plan and Cybersecurity Strategy Services

The vendor is required to provide IT master plan, disaster recovery plan and cybersecurity strategy services for include:
•    Modernize and streamline IT operations
•    Document the current IT environment
•    Identify key risks and opportunities
•    Provide a phased, actionable strategy to IT service delivery
•    Provide a cybersecurity master plan along with a roadmap to success
•    Provide a document management assessment and master plan to align with legislative requirements and road map to a digitized document management platform
•    Provide a disaster recovery masterplan with a roadmap to success
•    Provide intuitive user experiences for staff and residents
•    The strategy should balance technical recommendations with practical implementation considerations, and reflect the evolving expectations of internal departments, council, and the broader community.
- Objectives
1. Current state assessment
•    Conduct a full inventory and functional assessment of the municipality's IT infrastructure, a structure, systems, and services.
•    Review existing hardware and software assets, including lifecycle alignment with vendor guidance and best practices
•    Review current document management including compliance with legislative requirements and best practices.
o    Outline best practices
o    Provide data residency assessment and recommendations
o    Provide roadmap and recommendations to meet internal and external document management needs and requirements
•    Evaluate the current enterprise resource planning (ERP) system (currently migrating to Munisoft), including:
o    Current limitations and system risks
o    Short-term optimization opportunities.
o    Long-term replacement strategy and potential options.
o    Organizational needs and future IT readiness.
2. Engage municipal departments and council to identify:
•    Present-day challenges in IT service delivery.
•    Forecasted needs and service expectations over the next 3-5 years; and
•    Opportunities to improve digital service delivery, such as online transactions, citizen-facing portals, or internal efficiency tools.
•    Assess how emerging IT needs and digital tools may impact staffing, service design, or infrastructure requirements.
3. IT governance, policy, and service delivery model
•    Review existing IT-related policies and procedures from both a corporate governance, operational and technical perspective, and record keeping practices.
4. Evaluate the IT service delivery model, including:
•    Functional roles and responsibilities.
•    Service coverage and support structure
•    Alignment with current and projected service demands.
•    Identify potential capacity gaps, structural improvements, or workflow optimizations.
5. Cybersecurity and disaster recovery readiness
•    Assess the municipality's current cybersecurity posture, tools, and practices.
•    Integrate findings and identify opportunities to strengthen risk management and data protection.
•    Provide a strategic-level disaster recovery roadmap (not a full disaster recovery plan) outlining:
o    Current risks and gaps.
o    Suggested recovery time targets (1-month, 1-week, and 1-day).
o    A phased approach to developing or enhancing disaster recovery capabilities.