The vendor is required to provide a comprehensive, configurable, and cloud-enabled risk management information system (RMIS) that collects, analyzes, and manages risk-related data to evaluate and mitigate business risks.
- Risk management services (RMS) are to protect customer assets and discharge legal liabilities by identifying loss exposures, providing insurance coverage, promoting loss control and safety, and administering claims.
- RMIS (risk management information system)
• The ability for multiple internal users (department and other state agencies), and external users (users outside of the state as may be directed by rms) to access and upload information and documentation.
• A high level of system security.
• Analysis features.
• User-friendly reporting features.
• The ability to integrate with other systems.
• Remote access.
• The capability to convert or migrate data from existing legacy systems to facilitate deprecation.
a. The system must be accessible by state entities as directed by the department risk management organization supported by the organization and support the development of advice and cost-effective information management solutions for the following processes:
• Risk identification and assessment
• Risk control
• Risk financing
- General system requirement
• Configuration: the system must support the configuration of the state’s rules and regulations with an adaptive configuration to its ongoing changing needs and provide periodic functionality updates for continual product enhancement.
• Data conversion and migration: the system must support data conversion and migration of the state's loss control self-evaluation survey from the existing system.
• Third-party integrations: the system must enable integration with multiple third-party sources (i.e., states ERP, building land and lease inventory of property {BLLIP}, TPA, etc.) and entities, including suppliers and other state agencies as may be directed by rms.
o Offer application programming interfaces for seamless data exchange or equivalent solutions.
o Support data sharing transfers directly through secured data lakes or other cloud-based options, using flat files such as comma-separated values (CSV) and fixed record lengths and currently supported versions of excel spreadsheets
• Integration with department statutory programs (worker’s compensation, property, liability): the system must store program data, including enterprise risk management, insurance purchasing, workers' compensation and liability claims management, and administration.
• Accessibility, responsive, and modern workplace support: a browser-based system using the latest version and accessible for both personal computer and mobile devices to meet modern workplace needs, including principles of responsive design, adapting the display and layout to the screen size and resolution of the user’s devices.
• Hosting: the system must provide secure cloud-based data storage options for scalability and accessibility, with disaster recovery services to ensure data availability in case of system failures or disasters.
• End user security (role-based security/permissions): user security is based on the state’s organization structure and user classification down to rows and fields.
• Workflow automation: the system must have flexible, configurable, and routine workflow tasks, notifications, and alerts through defined business rules and forms.
• Document management: the system must collect, organize, manage, and store all claim files and legal documents for easy search and retrieval.
- System functionality and services
• Centralized information management: the system must provide centralized information on loss-control measures, prior claims, and insurance policies; track and allocate the total cost of risk; track and issue certificates of insurance; collect and manage exposure and asset management information; and collect other relevant risk data.
• Organization and location data: the system must provide the ability to configure the system to collect, analyze, and report organization and location data to enterprise risk management programs for state agencies, colleges and universities, and boards and authorities and state locations and includes:
• Allocation and total cost of risk: the system must allow for the distribution of costs across departments and divisions within an organization using various methods, including employee count, payroll, and cost.
• Exposure and asset management: the system must allow users to collect, store, track, and manage exposure and state asset data and integrate with claims data.
• Certificates tracking: the system must provide the ability to collect, store, report, and distribute current and historical certificates of insurance.
• Policy management: the system must allow for a configured, comprehensive insurance policy tracking for all lines of insurance provided by pool.
• Loss control. the system must provide the ability to configure, collect, store, and manage an online preformatted operational loss control survey designed to allow the state agency the ability to complete and submit the survey consisting of numerous categories of risk exposure.
• Inspections and audits: the system must provide the ability to configure a tablet-based electronic means to collect inspections and audit activities using pre-formatted report templates to include the ability to add picture and photo files and text from remote-field locations and transmit the file/form electronically.
• Reporting, dashboards, and benchmarking: the system must provide the ability to configure, manage, and store dashboards, reports, queries, forms, and documentation to support the rms programs.
• Risk survey collection and analysis:  the system will permit the state to build and publish risk surveys using customized data collection forms, store collected data, including document attachments, allow the collection of feedback in collaboration with the reporting state agency and provide access to all collected data for reporting purposes
- Integrations and data interfaces
a. Claims management information system (CMIS) and TPA system integration:
• The system must be able to integrate with the state's current TPA provider and their CMIS application currently under evaluation.
• The RMIS must provide ongoing integration with the state's designated TPA’S claims management system.
• Integration must include but is not limited to the following system components: claims, claimants, and payments, reserves, claim notes, claim documents, medical bill details, and contact and supplier details related to claims.
b. External rms data providers:
• THE RMIS must integrate data from the state building authority asset system (BLLIP), the state's human resources systems, the department enterprise fleet management system, geospatial and weather data providers, and medical providers on an ongoing basis to develop a complete view of the state's risk exposure.  
• Integration to the state’s workday financial system may be required as directed by rms
c. Third-party interfaces:
• The supplier must implement all interfaces with third-party systems (e.g., banks, fraud detection, etc.) as directed by rms and as required to deliver comprehensive services.
- Contract Period/Term: 1 year
- Questions/Inquires Deadline: April 18, 2025