Design, development and deployment of the Emergency Management Response System for WHO

Tendr: Emergency Management and Response System – Shared Document and Permission Management

Zadavatel: World Health Organization (WHO), Řím

Deadline: 21/6 (ale je třeba okamžitě poslat EOI a NDA)

Characteristics of the Contractor

Status: The Contractor shall be an institution operating in the field of information technology with proven expertise in in application architecture, design, development and rollout particularly for system that comprises document management and identity and access (permission) management and systém integration. Previous experience in public health will be an advantage but is not a pre-requisite.

Accreditations: An accreditation or an on-going accreditation process by a certified accreditation body will be an asset. Desirable accreditations include:  Project Management Methodology – such as PMBOK or PRINCE2.  IT Service Delivery – such as ITIL

Previous experience:  Previous work with WHO, other international organizations and/or major institutions in the field of system integration project, document management (particularly Office 365), integration, permission management and reference data management are essentials.  Proven experience in building SOA or microservice solutions as well as hybrid cloud solutions are desirable.

Staffing: The provider is expected to detail how they can provide adequately skilled resources for the project as part of this RFP, such as:  It is expected that part of the key personnel working directly on the project will have onsite presence in the WHO office in Geneva for at least part of the work.  An experienced team with a range of skills to manage and contribute to the project is required.  Resources with strong background in system integration, architecture, document management, and permission management are desired

Work to be performed: The evolution of the ICT landscape supporting EMRS will be strategically phased. The first tactical improvement phase is scoped with the following set of key principles in mind: 1. No or minor business process changes 2. No or limited training requirements 3. No or limited front-end functionality changes 4. Focus on shared cross-platform value 5. The solution will be considered as optimal if it is compliant to the mandatory requirements and delivered in the most efficient and effective manner

The objectives and the scope of the solution requested in this RFP must be fully compliant to the set of key principles identified above.

This chapter provides a conceptual overview of the mandatory functional scope and key architecture principles of the expected solution. The solution shall provide a set of common services to all users participating in event detection, verification, risk assessment and continuous monitoring, incident/emergency grading, and response to graded events.

The common services are:

1. Common Document Management Module. During the lifecycle of a public health situation of concern from signal to event and to emergency, a significant number of supporting documents are collected and generated. A shared repository, relying on a standard metadata taxonomy would ensure that a full set of common electronic media relating to the work is available in both EMS, vSHOC and any future solutions that support emergency work. The module aims at storing all documents to provide shared accessibility (search, browse) and avoid duplication of content

2. Common Permission Management Module. At present, administrators must configure and control user access in each software solution and the addition of a new user presents a nontrivial task to assign the correct access rights and maintain them over time. A single permission management module shared between systems that automatically provisions some roles based on available data would greatly simplify this task and reduce the risk of misaligning access permissions

The module aims at synchronising permissions across the landscape through predefined permission rules and centralised role-based access control

3. Common Reference Data Management Module between the two currently separate systems – EMS and vSHOC that ensures consistency of the shared metadata is a prerequisite for document accessibility and enables document browsing and contextual searching.