Vendor needs to provide enterprise password manager solution– To identify systems that will enable State to provide users with a password manager that will help generate and securely store various credentials. These systems should offer functionalities including but not limited to mobile/desktop applications, passphrase generation, enterprise administration, autofill capabilities, and more as detailed in this document– Security: Ensuring robust encryption, secure storage, and access controls for passwords. Continuous improvement of security measures to keep up with maturing threat landscape– Centralized Management: Ability to manage passwords across the organization from a single console– Password Policies: Implementing customizable password policies (length, complexity, expiration)– Multi–Factor Authentication (MFA): Supporting MFA for added security– Auditing and Reporting: Detailed logs, compliance reports, and audit trails– Self–Service Password Reset: Allowing users to reset their passwords securely– Integration: Seamless integration with existing systems (Active Directory, SSO, browsers, operating systems).– User Experience: Intuitive interfaces for users and administrators with useful, easy–to–access features. Easy to create and auto–fill credentials for the average user– Cloud Solution: Solution must be Software–as–a–Service (SaaS) with data centers within the continental United States with adequate security controls and, if possible, relevant security certifications– Scalability: The proposed solution should be highly scalable to keep pace with our expanding network of users. It should be designed to efficiently manage a large inventory of accounts without significantly increasing administrative overhead.– Cost–Effective Solution: The selected cloud solution should provide high value at a reasonable cost, ensuring State gets a strong return on investment and can effectively manage costs over time.
↧