“DOJ requires a Financial & Performance Management Controls & Compliance Software-as-a-Service (SaaS) application to serve as the system of record for these activities. The solution shall standardize and modernize the following activities: (a) A-123 audits; (b) financial statement audits; (c) agency financial reports (AFR); (d) annual performance reporting (APR) and other performance reporting; (e) enterprise risk management (ERM); (f) Congressional Budget Justifications (CBJs); (g) operational and program audits; (h) Sarbanes-Oxley audits (for Federal Prison Industries); and (i) policies and procedures. The solution shall be a SaaS in a hosted FedRAMP cloud offering that has been certified at a moderate level or higher by an existing Cabinet-level agency. The contractor must maintain an active FedRAMP certification (at its current level) while the Department and Components use the solution. Finally, the Contractor must be able to elevate its FedRAMP certification, if required and supported by the Department.”
“The Contractor shall provide a multi-tenant FedRAMP certified cloud-based software as a service (SaaS) system, in one secure and centralized system with the ability to:
- Provide pre-existing (out-of-box, ready to use) templates (e.g., documents, reports, and workflow) to record and process data needed to perform various Department and Component (a) A-123 audits; (b) financial statement audits; (c) agency financial reports (AFR); (d) annual performance reporting (APR) and other performance reporting; (e) enterprise risk management (ERM) activities; (f) Congressional Budget Justifications (CBJs); (g) operational and program audits; and (h) Sarbanes- Oxley audits (for Federal Prison Industries).
- Templates can be able to be configured by the government for specific Department use without the need for custom development.
- Templates shall comply with standards established by government oversight groups, including but not limited to (a) Federal Accounting Standards Board (FASB); (b) Governmental Accounting Standards Board (GASB); (c) Committee of Sponsoring Organizations (COSO); (d) International Organizations for Standardization (ISO); (e) Securities & Exchange Commission (for Federal Prison Industries); (f) Sarbanes-Oxley Act (for Federal Prison Industries); (g) National Archives and Records Administration (NARA) and (h) Control Objectives for Information & Related Technology (COBIT).
- Templates shall provide automated processes for audit-related Provided by Client (PBC) and other requests/deliverables that incorporate workflow, due dates and…”