The vendor is required to provide for redesign, development, and hosting of its official county website CMS and customer relationship management (CRM).
- website shall be ADA and WCAG compliant for accessibility standards and any future content added including content added by users shall be checked for accessibility compliance before being published.
- Specific features:
• Event calendar and registration: a robust system for event listing, with registration capabilities, all integrated with the CRM.
• Business listings: a robust system for business listings, with registration capabilities.
• Interactive features: include tools such as event calendars, payment portals, and GIS mapping.
• Ability to add payment options and form submission at a later date.
o Integrated payment portal for taxes, fines, and fees.
o Interactive forms (e.g., permit applications, service requests) with electronic signature capabilities.
• job board: an integrated system for posting job openings, managing applications, and interfacing with the county’s HR systems.
• Listing pages for local partnerships & non-profits: sections to promote community partnerships, provide resources, and support local non-profits.
• Subsite build for tourism; includes event calendar, interactive map, business listings etc.
• Communication features available for integration such as pop-ups, ticker alerts, newsfeeds, chat bot (AI).
• Customizable user permissions:
o Administration: complete control over all site functionalities.
o Departmental management: ability to manage and update department-specific content.
o Content contributors: limited to editing their designated areas.
o Users that manage the website and content should be able to be configured locally or using SAML integration with IDP’S including but not limited to azure and duo.
o Local user accounts should have the ability to set and change their own passwords and include multi
factor authentication as an added security measure.
o Public access: interactive elements for public engagement without needing login.
o Any login protected public access potentially associated with CRM or public user request tracking shall have the option to use social network accounts as IDP’S in addition to local authentication and authorization.
• Integration capabilities:
o Seamless integration with third-party applications (e.g., GIS systems, document management tools, email management).
o API support for future data sharing or service extensions.
o Multi language experience.
• Robust customized CRM system (detailed description below).
- Security requirements:
• SSL encryption: mandatory SSL for all site interactions.
• Advanced security measures:
o Implementation of security plugins such as word fence, Sucuri, or similar for:
o Regular malware scanning
o Firewall protection
o Brute force attack prevention
o Real-time threat monitoring
o User authentication:
o Enforced two-factor authentication for administrative access.
o Strict password policies.
• Update management:
o Updates: outline a schedule for regular software and security updates.
o Perform regular security updates of WordPress core, themes and plugins
• Secure hosting:
o Secure dedicated server
o Daily backups with off-site storage
o DDoS protection
o Compliance with NIST or similar governmental security standards
o Hosting provider located within the country
o Load balancing shall be provided as determined necessary and scaled to maintain website availability and uptime
o Support basic security and frameworks or strategies for basic mitigation against malicious actions, denial of service attacks, and other common threats.
o Including basic security scanning and mitigation
o Provide support for bug-fixes and other troubleshooting
o Provide support for optimization and performance to ensure responsiveness, availability and load times
• Audit and compliance:
o Logging of user and system activities for compliance and security audits.
o adherence to privacy laws like GDPR for European data subjects, if applicable
- Functional requirements:
• Content management system:
o User-friendly backend for content updates by county staff of various technical abilities.
o Built-in SEO features to enhance online visibility.
• Accessibility:
o Compliance with WCAG 2.2 (w3c) to ensure the site is accessible to all users.
o Performance optimization:
o Implementation of caching, minification, and CDN for fast load times. - Technical requirements:
• Hosting:
o Detailed specifications of the hosting environment, including hardware, data center location, backup solutions, and uptime guarantees.
• Scalability:
o The infrastructure should be scalable to accommodate traffic spikes during significant county events or initiatives.
- Reporting and analytics:
• Site analytics:
o Integration with google analytics or similar tools for tracking usage patterns.
o Custom reports on site performance and user behavior.
• Dashboard:
o Admin dashboard summarizing key performance indicators (KPIS) such as traffic, form submissions, and payments.
- Contract Period/Term: 1 year
- Questions/Inquires Deadline: April 09,2025
