The Vendor is required to provide a fully integrated DRaaS (disaster recovery as a service) solution that will provide cloud-based data backup services and a single point of access and management across a heterogeneous network environment.
- Full hot site DRaaS solution
• A full hot site will offer a real-time, fully operational replica of critical it infrastructure and services in a cloud-based environment.
• The hot site must allow for instant or near-instant failover in the event of a disaster, ensuring continuity of essential county services with minimal disruption.
• It should include regular testing, maintenance, and updates to ensure readiness in case of an actual disaster.
• Data replication must occur continuously, or in near-real-time, to maintain up-to-date backups of all critical systems and data.
- Hybrid hot/warm site DRaaS solution
• A hybrid solution must combine aspects of both a hot site and a warm site, allowing the county to prioritize critical services for immediate recovery while offering a cost-effective approach for less critical systems.
• Critical systems should be maintained in a hot site configuration, with rapid failover capabilities, while non-essential systems can be set up in a warm site configuration (i.e., systems that can be brought online within hours, rather than minutes).
• The hybrid solution must provide clear service-level agreements (SLAS) for recovery times for both hot and warm site systems. • The solution must adhere to all applicable CJIS security policy requirements for the protection of criminal justice information (CJI), including encryption, secure access, and incident response protocols.
• Must ensure that all data backups, disaster recovery processes, and communications comply with state law and CJIS standards, ensuring the protection of sensitive data related to law enforcement and criminal justice matters.
• The solution should be compliant with CJIS security policy version 5.9 (or the most current version) and any other relevant state or federal regulations governing law enforcement data security.
- General infrastructure details:
• Servers: a mix of physical and virtualized servers supporting various critical applications and government services.
• Storage: scalable storage solutions designed to accommodate high-volume data associated with county operations, including sensitive government data.
• Network infrastructure: a secure, robust network environment supporting county employees, services, and remote access capabilities.
• Critical applications: applications critical to the operation of essential government services, including finance, corrections, and public records systems.
• Backup solutions: a combination of on-premises and cloud-based backup solutions with established retention and recovery procedures.
• Compliance: the IT infrastructure is designed to meet or exceed industry standards for security and data protection, including compliance with CJIS, state law, and other relevant regulations.
- Contract Period/Term: 1 year
- Pre-Solicitation Meeting (Non-Mandatory) Date: April 22, 2025
- Questions/Inquires Deadline: April 28, 2025
