Broward County Commission Regular Meeting

A. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 1 - Payment Card Industry (PCI) Services, comprised of the following: 1st Secure IT, LLC; Carahsoft Technology Corporation; Enterprise Risk Management, Inc.; Focal Point Data Risk LLC; and Presidio; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

B. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 2 - Health Insurance Portability and Accountability Act (HIPAA) Services, comprised of the following: Crowe Horwath LLP; Enterprise Risk Management, Inc.; Focal Point Data Risk LLC; Marcum LLP; and Presidio; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

C. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 3 - IT Audit Services, comprised of the following: Carahsoft Technology Corporation; Enterprise Risk Management, Inc.; Focal Point Data Risk LLC; Marcum LLP; and Presidio; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

D. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 4 - Security Penetration Testing, comprised of the following: 1st Secure IT, LLC; BreakPoint Labs; Crowe Horwath LLP; Focal Point Data Risk LLC; and JohnsTek, Inc.; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

E. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 5 - Security Incident Response, comprised of the following: Carahsoft Technology Corporation; Crowe Horwath LLP; Enterprise Risk Management, Inc.; Foresite MSP LLC; Global Information Intelligence LLC; Nettitude, Inc. DBA Nettitude; and Optiv Security; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

F. MOTION TO ESTABLISH List of Qualified Firms for Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services, Category 6 - Public Safety Network and Systems Audit Services, comprised of the following: Carahsoft Technology Corporation; Focal Point Data Risk LLC; Global Information Intelligence LLC; JohnsTek Inc.; and Securance LLC; and authorize staff to proceed with negotiations.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

G. MOTION TO AUTHORIZE Director of Purchasing to execute agreements with approved firms for inclusion into the six separate Libraries, Categories 1 through 6, for Information Technology Security and Compliance Services in the cumulative three-year estimated amount of $550,000 for all categories and authorize the Director of Purchasing to renew the Agreements for two, one-year periods at approximately $150,000 per renewal term for a potential cumulative five-year amount of $850,000. The initial term of the Agreements will begin on the date of execution and terminate three years from that date.

ACTION:  (T-3:27 PM)  Approved.  (Refer to minutes for full discussion.)
 
VOTE: 9-0.  Commissioners Geller and Holness voted in the affirmative telephonically. 

MOTIONS A, B, C, D, E and F: In accordance with the Broward County Procurement Code, Section 21.42.d, the Board may establish lists of qualified vendors for various goods and/or services, with individual awards to be based upon informal quotations obtained in a manner established by the Director of Purchasing, and award of individual contracts made by the appropriate awarding authority.

MOTION G: In accordance with the Broward County Procurement Code, Section 21.31.b.2, Board approval is required for professional services agreements greater than $100,000 per annum or $200,000 for multi-year contracts; and in accordance with the Broward County Procurement Code, Section 21.14.c.6, the Director of Purchasing shall execute all contracts and amendments delegated by the Board for the Director's execution.

MOTIONS A, B, C, D, E and F: Approves the Selection Committee's recommendation of the six separate lists of qualified firms for inclusion in the six separate libraries for future County projects requiring information technology security and compliance services to the County on an as needed, project-specific basis.

MOTION G: Facilitates the execution of contracts with firms included in the six libraries for information technology security and compliance services.

None.

THE PURCHASING DIVISION AND THE SELECTION COMMITTEE RECOMMEND APPROVAL OF THE ABOVE MOTIONS.

The Office of Economic and Small Business Development determined that no County Business Enterprise (CBE) goal is applicable to this project, because there are no certified CBE firms that are able to independently provide the services as required by the user department. Additionally, the Workforce Investment Program does not apply to this project (Exhibit 3).

The purpose of establishing six libraries is to enable the Enterprise Technology Services (ETS) Division, and other agencies, such as the County Auditor's office, the Aviation Department and the Port Everglades Department, to procure information technology security and compliance services in a flexible, yet competitive and on-demand manner. When a need is identified, the pre-qualified contractors for the given category shall be invited to offer an itemized written price quote. Services for the request shall be awarded to the overall lowest responsive and responsible bidder able to provide the services during the desired time frame.

The six libraries consist of: Category 1 - Payment Card Industry (PCI) Services; Category 2 - Health Insurance Portability and Accountability Act (HIPAA) Services; Category 3 - IT Audit Services; Category 4 - Security Penetration Testing; Category 5 - Security Incident Response; and Category 6 - Public Safety Network and Systems Audit Services.

On June 13, 2017, Item No. 72, the Board approved the Request for Qualifications (RFQ) No. A2114499R1, Information Technology Security and Compliance Services. Twenty-four firms submitted proposals in response to the RFQ. On October 12, 2017, one firm, RSM US LLP, withdrew in writing.

On October 12, 2017, a Short List Meeting was held. The Selection Committee deemed two firms, Plante & Moran, LLC DBA Plante Moran, and SHI International Corp. non-responsive to the Domestic Partnership Act, as both firms have stated that they will not comply with the ordinance. One firm, SeNet International Corporation, did not meet the responsibility requirements of Category 5.

The Selection Committee short-listed five firms per library for Categories 1, 2, 3, 4, and 6; and the Committee short-listed seven firms for Category 5. 

The Selection Committee's recommendation of short-listing was posted on the Purchasing Division website from October 16, 2017 through October 20, 2017, which provided an opportunity for any aggrieved proposer to file a formal protest. There was no protest filed within this timeframe.

Additional supporting documentation provided to the Selection Committee regarding this procurement can be found on Broward County’s Purchasing Division website at http://www.broward.org/Purchasing/Pages/Repository.aspx 

The Selection Committee consisted of:
Maryann Berchiolli, Purchasing Agent, Purchasing Division, Finance and Administrative Services Department (Chair and Non-Voting Member)
Gerard Boucaud, Audit Manager, Office of the County Auditor
Michael Nairn, E911 Communications Administrator, Office of Regional Communications and Technology
Ben Sanchez, Information Systems Administrator, IT Business Services, Enterprise Technology Services Division, Finance and Administrative Services Department

Brenda J. Billingsley, Director, Purchasing Division, (954) 357-6070