Webmaster Services

The vendor is required to provide to authority with web design and development, graphic design, and webmaster services.
- These services shall include, but not be limited to: designing, developing, and maintaining a functional, visually appealing, and user-friendly website that aligns with authority branding and organizational objectives. 
- This includes responsive web design, UX/UI optimization, site performance enhancements, content updates, security management, and ongoing webmaster support to ensure seamless operation.
- Must have the capability and expertise to fully redesign and/or rebuild the website if required by the authority, ensuring that the website meets the highest standards of usability, security, accessibility, and performance and aligns with the authority’s vision, branding and operation goals.
- Content audit and analysis
• Review the existing website to:
1. Inventory all current pages, forms and content types
2. Assess existing 3rds party integrations (e.g. ticketing, CRM, social media)
3. Identify content to retain, revise, archive, or migrate
• Determine the scope of content migration and any structure data that needs to be carried over
- Technical audit and system review
• Assess current website architecture, CMS platform, plugins, hosting, and security configurations
• Identify any technical debt, performance issues, or accessibility noncompliance
• Review existing analytics data (e.g., traffic, bounce rates, device/browser usage)
- Sitemap and information architecture planning
• Develop a draft site structure and content taxonomy reflecting user journeys and organizational needs
• Create wireframes or annotated mockups for key page templates (e.g., homepage, events calendar, registration pages, and map interface)
- Information requirements definition
• Identify required integrations with third-party tools and systems, including but not limited to:
1. CRM, ERP, payment/ticketing platforms, event management tools, social media feeds, analytics tools, and real-time data sources (e.g., weather, transit)
• Confirm data flow needs and assess API availability and documentation status
- Accessibility, search engine optimization (SEO) and compliance strategy.
• Define approach to ensuring compliance with security requirements set forth below.
• Outline foundational SEO practices, metadata structures and page speed target.
- Future-proofing and growth planning
• Assess anticipated growth in content, features, and audience needs
• Recommend a scalable technical and content strategy that supports future expansion
- Development & testing environment planning
• Document requirements and standards for the staging/development environment that will be used during implementation
• Establish workflows for authority review, feedback, and approvals prior to go live.
- Website redesign, rebuild, and enhancement – project phase 2
• Redesign and/or completely rebuild the website, incorporating modern design principles, user-friendly navigation, and responsive functionality across all devices and web browsers.
• Ensure that all new designs and newly developed features align with the authority’s branding and aesthetics while maintaining consistency and usability across all pages.
• Provide a development testing environment for any redesigns and updates, allowing the authority to review, provide feedback, and approve before implementation.
• Ensure all newly developed content and functions are compatible with modern browsers, including mobile browsers and search engines.
• Support custom application development and interactive features, including online forms, databases, and content management.
• Ensure the seamless integration of social media platforms such as x (formerly twitter), Facebook, LinkedIn, Instagram, and others as needed
• Enhanced speed, indexing, and search ranking improvements
• Secure infrastructure – SSL encryption, firewalls, and protection against cyber threats
• Built to accommodate future growth and feature additions
• Easy content management via WordPress, CMS, or user-friendly custom solutions
• Build third-party seamless connection with CRM, ERP and other tools
• Accessibility compliance – design to meet ADA and WCAG standards for inclusivity.
• Ongoing support & maintenance – regular updates, bug fixes, and technical support.
• Static background video on homepage (e.g., park tour-style introduction)
• Real-time visitor information: hours of operation, weather, public transit, alerts on closures
• Visual representation of park statistics and features
• Highlight upcoming special events with full calendar integration
• Live social media feeds
• Comprehensive event & permit calendar with filters by category, series, and availability
• Direct links to individual event pages and map integration for event locations
• Ticketing and registration, including promotion & waiver functionality
• Backend tracking for event registration
• Interactive map with mobile-first experience, displaying events, amenities, and historical/factual data
• Real-time travel info to destinations within the site (e.g., public transport, walking times)
• Integrated platform for memberships, fee & invoice collections, and event ticketing
• Customizable receipt and confirmation messages
• Online registration forms for programs, permits with built-in waiver/intake system
- Website accessibility, performance and uptime:
• Ensure the constant (uninterrupted) accessibility, usability of all pages of the website
• Monitor uptime, site performance, and availability of core services.
• Clearly specify scheduled maintenance windows and expected downtimes.
- Provide routine updates to content, structure, and functionality of the website, including the creation of new pages and modification of existing ones as required.
- Perform regular backups of the website (at minimum, daily for databases and weekly for full-site backups) and develop and implement a disaster recovery plan, in consultation with the authority to ensure minimal disruption in case of failure. 
- The disaster recovery plan should be submitted in writing to the authority and updated no less than annually.
- Website security and compliance
• Implement robust cybersecurity measures to protect the website from hacks, malware, ransomware, DDOS attacks, SQL injections, cross-site scripting (XSS), and other cybersecurity threats.
• ensure all security patches, updates, and vulnerability fixes are applied promptly upon release.
• maintain secure socket layer (SSL) certificates, firewalls, and other necessary security protocols.
• Conduct quarterly security audits and penetration testing to identify and address vulnerabilities and present same to the authority
• Ensure compliance with applicable data protection regulations, including state and agency cybersecurity policies, GDPR (if applicable), and best practices for data privacy.
• Provide incident response and mitigation services, including immediate action in the event of a security breach to contain and resolve the issue.
• Deploy and maintain a WAF to filter and block malicious traffic
• Now requires quarterly security audits and penetration test.
• Encrypt stored data to protect sensitive information.
• Ensure SSL certification is active and up to date for secure connections
• Use secure protocols (SFTP, https, etc.) for data transmissions
• Enable real-time logging of system activity
• Use ids to detect and respond to threats
• Implement clear cookie policies and user consent mechanisms 
- Performance monitoring, analytics, and reporting
• Provide real-time website monitoring to detect and address any downtime, slow page load speeds, broken links, or other performance issues.
• Deliver monthly analytics reports, including user engagement metrics, traffic trends, site speed analysis, bounce rates, and SEO performance.
• Implement SEO best practices to optimize the website’s visibility in search engine results and recommend improvements based on analytics data.
• Communicate planned outages or disruptions to users.
• Perform backups before applying changes.
• Define rollback procedures in case of failure
• Update documentation with detailed records of changes.
• Monitor for unexpected issues after deployment.
• Collect feedback from stakeholders to evaluate the success of changes.
• Analyze patterns in change requests to identify process inefficiencies.
- Contract Period/Term: 2 years
- Pre-Proposal Meeting Date: July 15, 2025
- Questions/Inquires Deadline: July 21, 2025