The Vendor is required to provide e information technology security consultant/technical writer with expertise in writing technical documents as well as understanding information technology environment and system security needs.
- The project requires a consultant to review and revise the agency.
- The agency must address the following:
• Authorized access and authentication for authorized access;
• Privacy compliance standards;
• Privacy and security audits;
• Breach notification and procedures; and
• Data retention and disposition policies,
- The agency must also provide:
- Standards analysis: review and analyze existing documentation, industry standards, and best practices to identify areas for improvement or alignment with current agency it practices and requirements established by the state department of information technology.
- Stakeholder collaboration: work with department , agency center it staff and other stakeholders to gather input and ensure the revised standards meet the needs of all parties involved. - Chief Data Office (CDO) Policies Review: Review Statewide Data Governance Policies and
Standards documents, review the data governance framework - website review and incorporate modules on Data Privacy and Data Security in agency as needed.
- Implementation: Provide a final revised agency which includes current best practices, aligns with department requirements, and complies with the IT Security Manual.

- Contract Period/Term: 1 year