Tarrant County

The buyer is seeking a cloud-based third-party and supply-chain risk management software solution. The system will evaluate vendors' security postures through vulnerability scans, self-assessments, and audits. It will compare vendors based on security, company, and platform ratings to determine the best fit for county needs. The solution must have features like customized reporting, data encryption, and role-based access controls.

• 1/6/2025 - Virtual Pre-Proposal Conference
• 1/7/2025 - Questions Deadline
• 1/23/2025 - Proposal Due Date

• 10+ years experience in third-party/supply-chain risk management
• Experience dealing with government agencies
• Knowledge of CJIS, HIPAA, and PII regulations

• Provide cloud-based third-party/supply-chain risk management software solution
• Evaluate potential and current vendor security postures
• Conduct vulnerability scans on vendor edge devices
• Provide self-assessment questionnaires for vendors
• Generate automated ratings of vendor questionnaire responses
• Produce customized reports with county logo
• Implement role-based access controls
• Provide training options including instructor-led and online materials
• Offer managed security services option
• Ensure data encryption in transit and at rest