(1) Vendor needs to provide single sign–on and multi–factor authentication solution– The Agency is seeking a solution that can be broadly integrated across various applications and services to provide multi–factor, single sign–on constituent authentication.– The RFP for a comprehensive, cloud–hosted Single Sign–On (SSO) and Advanced, Threat–Aware Multi–Factor Authentication (MFA) solution– This initiative is a critical step in enhancing the security posture of the agency digital services and improving user experience for Colorado residents accessing state networks, applications, and services.– The ideal solution will provide a robust, modern, and user–friendly authentication system that aligns with federal requirements and guidelines, such as the National Strategy for Trusted Identities in Cyberspace– The primary objective is to implement a solution that promotes user cybersecurity best practices, prevents identity fraud, and preserves the integrity of state systems used to provide government services.– Platform Provisioning and Configuration- Cloud–hosted Environments: Provisioning and configuration of secure, cloud–hosted production, quality assurance (QA), and development (Dev) environments. A FedRAMP–authorized cloud environment is a highly desired requirement (as it demonstrates compliance with stringent federal security and risk management standards for cloud services).- Core Platform Setup: Installation and baseline configuration of the core identity platform, including SSO, MFA, and user lifecycle management components.- Access Control: Establishment of secure connectivity and access control mechanisms for all environments, including the configuration of administrative roles and Role–Based Access Control (2) All the questions must be submitted no later than December 10, 2025 (3) The contract period will be for one year. (4) Pre–bid meeting will be held on December 8, 2025