THE CETA - Construction Education

Returnable Documents:

• The solution clearly demonstrates the ability to link to other systems and transfer 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67

Deliverables for the CETA Website, Intranet and Mobile Application development, management and maintenance must include: 1. Project Charter and Project Implementation Plan 2. Detailed approach for the delivery of a Website, Intranet and Mobile Application for the CETA 3. User Management 4. Website (Development, Management and Maintenance) 5. Intranet (Development, Management and Maintenance) 6. Mobile Application (Development, Management and Maintenance) 7. Solutions Integration 8. Analytics, Reporting and Dashboards 9. Hosting for WIMA Components (where required) 10. Data Migration Plan and reporting on its execution and progress 11. Change Management Plan and reporting on its execution and progress 12. Training Materials (Digital) and Training Workshops to be conducted for CETA stakeholders 13. End User Support for the duration of the project 14. Monthly Project Progress update reports 15. Ongoing review, recommendation and enhancements of the WIMA components for the duration of the project The primary objective of this project to provide the CETA with a Website, Intranet and Mobile Application in conjunction with the required supporting elements. Bidders are encouraged to showcase any additional offerings relating to WIMA, not specifically outlined in the Deliverables above, in their response to this tender. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 9. PROJECT DURATION The project is expected to run for a period of three (3) Years, from the award and onboarding of a successful bidder. CETA requires the outlined requirements and deliverables for the full duration of the project. Project Handover • Detailed handover of the developed solutions (WIMA Components) are to be made available to the CETA as and when they are completed and or at any point during the course of their development, including all solution documentation and solution blueprints • Certificate of CETA ownership of all solutions developed during the course of this project, and data migrated into or out of those solutions • Any solutions developed during the course of this project are to be hosted on the CETA’s platforms and or CETA ICT environments (Cloud and or On Premise), unless otherwise agreed by the CETA and service provider • Detailed reports, analytics and dashboards are to be made available to the CETA as and when they are completed and or at any point during the course of their development • Any and all recommendations, guidance and support are to be documented and provided to the CETA in an agreed upon format with the appointed service provider 10. INVOICING A hybrid approach of Time and Materials, and invoicing linked to Deliverables will be followed. Where the primary outcome of work undertaken by the service provider will be deliverable based, invoicing shall be prepared in alignment to the deliverable/s provided to the CETA. Where the primary outcome of work undertaken by the service provider will be service based, invoicing shall be prepared in alignment to the time and materials expended in providing the services. Invoicing may only take place once services and or deliverables have been provided with all necessary supporting documentation proving the completion thereof. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 11. PRICING SCHEDULE PART A: ONCE-OFF DELIVERABLES (Updated during the course of project as and when required) (Prices to be in South African Rands) Item Cost per Deliverable Item Description Deliverable No. (Ex VAT) 1. Project Charter and Project 1 Implementation Plan 2. Detailed approach for the delivery of a 1 Website, Intranet and Mobile Application for the CETA 3. Data Migration Plan 1 4. Change Management Plan 1 VAT @ 15% R TOTAL R PART B: ONGOING DELIVERABLES (For the duration of the project) (Prices to be in South African Rands) Item Item Description Deliverables No. Rate per Hour Rate per Hour Rate per Hour Year 1 Year 2 Year 3 (Ex VAT) (Ex VAT) (Ex VAT) 1 User Management Website 2.1 Development 2.2 Management 2.3 Maintenance Intranet 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” PART B: ONGOING DELIVERABLES (For the duration of the project) (Prices to be in South African Rands) Item Item Description Deliverables No. 3.1 Development 3.2 Management 3.3 Maintenance Mobile Application 4.1 Development 4.2 Management 4.3 Maintenance 5 Solutions Integration 6 Analytics, Reporting and Dashboards 7 Training Materials (Digital) and Training Workshops 8 End User Support VAT @ 15% R R R TOTAL R R R 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” PART C: MONTHLY DELIVERBLES (For the duration of the project) (Prices to be in South African Rands) Item Item Description Deliverables No. Cost per Month Cost per Month in Cost per Month in in Year 1 Year 2 Year 3 (Ex VAT) (Ex VAT) (Ex VAT) 1 Hosting for all WIMA Components 2 Monthly Reporting on all WIMA Components 3 Monthly Reporting on Change Management (Progress and Updates) 4 Monthly Reporting on Training Management (Progress and Updates) 5 Monthly Reporting on Data Migration (Progress and Updates) 6 Monthly Project Progress Reporting VAT @ 15% R R R TOTAL R R R PART D: SOLUTION SUBSCRIPTION / MAINTENANCE COSTS (For the duration of the project) (Prices to be in South African Rands) Item Item Description Deliverables No. Cost Year 1 Cost Year 2 Cost Year 3 (Ex VAT) (Ex VAT) (Ex VAT) 1 Solution Subscription / Licence Maintenance for the duration of three (3) years VAT @ 15% R R R TOTAL R R R 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” TOTAL: Part A, Part B, Part C and Part D (Prices to be in South African Rands) Item Item Description Deliverables No. Cost Year 1 Cost Year 2 Cost Year 3 (Ex VAT) (Ex VAT) (Ex VAT) 1 PART A 2 PART B 3 PART C 4 PART D VAT @ 15% R R R TOTAL R R R TOTAL FOR 3YRS (INCLUSIVE OF VAT) NB: Mandatory updates and enhancements to solutions developed during the course of this projects are to be considered on an annual basis by the appointed service provider and are to be specified/developed per the identified need of the CETA. Solution support and maintenance are to be rate-based and must be managed through a dedicated helpdesk as and where required. • Please note the hourly rates given above are estimates and are only for comparison and evaluation purposes, they may increase depending on the needs, during the project. The submitted prices must be fixed for a period of twelve months. ......................................... ..................................................... Signature Date ........................................ ...................................................... Position Name of Bidder 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 12. EVALUATION CRITERIA Please read all evaluation criteria requirements carefully. Failure to provide the requested information and or supporting content will result in a loss of evaluation criteria points. 1.1. Criterion 1 – Functionality Functionality is worth 85 points. The minimum threshold is 70 points. Applicants who score less than 70 points on functionality will therefore be disqualified. Bidders must provide cover pages in their bid response indicating which content relates to the following evaluation criteria: • Reference Letters • Project Plan • Technical Proposal • Project Team Composition Functionality Evaluation Criteria: Reference Letters Applicants must have specific experience and submit contactable references of similar Total – 10 work undertaken. points Reference Letter Requirements • Reference Letters must be on a client’s letterhead with contact details provided. (Contact Number, Physical Address and Email) • Reference letters with redacted, or otherwise illegible detail will result in them being found invalid and will not be considered for reference letter points. • Reference letters may not be more than five (5) years old from the date of publication of this tender. Note: CETA reserves the right to validate all reference letters provided by the Bidder. Reference Letter Points Allocation: Points Awarded

The sections below provide a list of the CETA’s requirements for the WIMA environment and associated supporting elements as outlined in the WIMA Concept Operating Model. Bidders must demonstrate how they will meet these requirements in the provision of their chosen solution to the CETA. 7.1. User Management User Profile Lifecycle Management: o User profile creation, maintenance, update, status change and archiving. User Profile Management o Enable users to manage their profiles, update personal information, and manage notifications. o For the Intranet, include job-specific details, such as department and role, to support collaboration and communication. User Access and Authentication o Implement a secure login system with multi-factor authentication and role-based access control across all WIMA components. o Support Single Sign-On (SSO) integration to streamline access across the website, intranet, and mobile application. User Roles and Permissions o Define and implement different user roles with distinct permissions, including admin, editor, and user access levels. o Provide customisable access controls based on job roles and requirements, ensuring users only have access to necessary features and information. Activity Logs and Security Audits o Develop activity logging capabilities to track user actions across platforms for security and compliance. o Dashboard capabilities for administrators to review user activities, access history, and any suspicious behaviour. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 7.2. CETA Website Development, Management and Maintenance Website Development o Design a responsive, Search Engine Optimised (SEO), and user-friendly website with an intuitive interface that is consistent across desktop and mobile devices. o Implement a Content Management System (CMS) for efficient content updates by non- technical users, supporting features like drag-and-drop page building, media library, and revision tracking. o Include core functionalities such as search, news, events, CETA specific requirements and contact forms to engage visitors and provide up-to-date information. Content Management and Updates o Enable easy updates for website content, with permissions-based access for content creators and editors. o Support multimedia integration (images, videos, and documents) and SEO features for website content to boost search visibility. Security o Ensure data protection through SSL encryption for data in transit and secure databases to protect user data, documents, and sensitive communications. o Maintain access control by implementing role-based access, limiting access to certain documents and areas based on user roles within the website. o Comply with industry and regulatory standards for data privacy, and include mechanisms for data anonymisation and pseudonymisation when needed. o Monitor website activity to detect and mitigate security threats such as unauthorized access attempts, data breaches, and other vulnerabilities. 7.3. CETA Intranet Development, Management and Maintenance Intranet Development o Develop an employee-centric platform with document sharing, collaboration tools, and internal communication features like announcements and news feeds. o Integrate a document management system with version control, secure file sharing, and role-based access to enhance internal knowledge management. o Provide communication tools like chat, forums, or message boards to foster collaboration, and include calendar features for company-wide or team-specific events. Content Management and Updates o Enable easy updates for intranet content, with permissions-based access for content creators and editors. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” o Support multimedia integration (images, videos, and documents). Security o Ensure data protection through SSL encryption for data in transit and secure databases to protect user data, documents, and sensitive communications. o Maintain access control by implementing role-based access, limiting access to certain documents and areas based on user roles within the intranet. o Comply with industry and regulatory standards for data privacy, and include mechanisms for data anonymisation and pseudonymisation when needed. o Monitor intranet activity to detect and mitigate security threats such as unauthorized access attempts, data breaches, and other vulnerabilities. 7.4. CETA Mobile Application Development, Management and Maintenance Cross-Platform Functionality o Develop a native or cross-platform mobile application for iOS and Android, providing essential website and intranet functionalities. o Ensure the app has a streamlined, mobile-optimised UI/UX that is user-friendly and intuitive, leveraging mobile-specific design patterns like swipe gestures and touch- friendly navigation. Core Features o Integration to the website allowing mobile users to access core website features, including content browsing, event updates, and contact forms. o Integration to the intranet to enable employees to access intranet functionalities like news feeds, document management, and team communications. o Integrate push notifications to update users on relevant information, such as new content, intranet updates, and company-wide alerts. Offline Access o Provide limited offline functionality, allowing users to save content and access essential features (such as recent documents or messages) even without an internet connection. User Profile and Setting Management o Enable users to manage profile settings, notification preferences, and other app configurations within the mobile application. Security o Ensure data is encrypted both in transit and at rest, with additional measures for user data, documents, and sensitive communications. o Implement multi-factor authentication (MFA) for added security when logging into the mobile app, especially for intranet functions. o Ensure the mobile application is compliant with relevant privacy regulations and 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” securely manages personal data. o Include session timeouts and re-authentication for idle periods, as well as biometric logins (e.g., fingerprint or face recognition) for enhanced security on supported devices. 7.5. Solutions Integration Internal Systems and Tools o Integrate the website, intranet, and mobile app with existing internal CETA systems (where required) to streamline operations and ensure data consistency. o Enable seamless integration with Microsoft Office 365 to support document collaboration within the intranet. API Development and Management o Develop and document secure APIs to support data exchange between platforms, enabling scalability and compatibility for future integrations. o Secure APIs with role-based access control, logging, and access monitoring to track API usage. Third-Party Integrations o Integrate third-party services such as social media (for website content sharing), Google Analytics, and customer support tools (e.g. chatbots, live support etc.). o Include payment gateways (if required) with Payment Card Industry (PCI) compliance for handling sensitive payment information (where required). Single Sign-On (SSO) and Authentication o Implement SSO across all platforms for ease of access, integrating with existing identity providers such as Sage, Azure Active Directory, and or Google Identity/Microsoft. 7.6. Analytics, Reporting and Dashboards Data Collection and Analytics o Implement web and app analytics tools (e.g. Google Analytics, Firebase Analytics, etc.) to gather data on user behaviour, traffic patterns, and engagement metrics. o Track KPIs such as page views, Web page section dwell times, user sessions, bounce rates, and conversions to inform decision-making. User Engagement and Behaviour Tracking o Provide insights into user journeys, identify popular content, and assess areas for improvement across website, intranet, and mobile applications to enhance the user journey. o Monitor mobile application engagement with session duration, retention rates, and in- app interactions to optimise user experience. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” Dashboarding for Administrators o Develop a centralised dashboard for administrators to monitor the performance of each platform, including website traffic, intranet usage, and app analytics. o Allow customisation of dashboards with widgets for tracking metrics such as content performance, system status, and user feedback. 7.7. Hosting 7.7.1 Internet Infrastructure and Reliability o Use a cloud-based hosting solution (e.g., AWS, Google Cloud, Azure, etc) for flexibility, scalability, and geographic redundancy. (This may either be provided by the o Ensure a minimum of 99.9% uptime SLA for high availability, with failover capabilities to minimize downtime. Scalability o Support auto-scaling to handle traffic spikes, especially during events, promotions, or launches. o Content Delivery Network (CDN) integration to distribute content globally, reduce load times, and manage high traffic across regions. Security o Enable Secure Socket Layer (SSL) certificates to encrypt all data in transit, ensuring a secure HTTPS connection. o Ensure firewall protection, Distributed Denial of Service (DDoS) mitigation, and regular vulnerability scanning. o Comply with regulatory requirements for user data protection, including data anonymisation and secure data storage. Performance Optimisation o Support caching (e.g., page and database caching) to reduce server load and speed up response times. o Leverage monitoring tools to track performance metrics (load times, server response) and resolve any bottlenecks promptly. Backup and Disaster Recovery o Set up regular automated backups with easy rollback options to restore in case of data loss or security incidents. o Implement disaster recovery solutions with data redundancy across multiple regions or availability zones. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 7.7.2 Intranet Infrastructure and Access Control o Host on a secure internal cloud environment (CETA Cloud) and or private VPN with restricted access, either via an internal network or a secure virtual private cloud. o Ensure compatibility with Single Sign-On (SSO) for seamless access and role-based access controls. Scalability and Reliability o Provide on-demand scalability, particularly to accommodate a growing number of employees or resources. o Ensure high uptime SLAs (99.9% or higher) with failover and load-balancing capabilities to maintain continuity. Security and Compliance o Implement stringent security protocols, including SSL/TLS encryption, firewalls, and access restrictions. o Ensure multi-factor authentication (MFA) for employee access, especially for sensitive information. o Regularly conduct audits and adhere to data security and privacy regulations relevant to internal information handling. Backup and Disaster Recovery o Enable automated, encrypted backups for intranet data, with defined Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) to minimise data loss. o Include an incident response plan for intranet outages, including offsite or hybrid storage to preserve data integrity. Integration with CETA Systems o Host on infrastructure that supports secure API integration with other internal systems. o Ensure compatibility with internal communication and collaboration tools, such as Microsoft Office 365. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society” 7.7.3 Mobile Application Backend Infrastructure o Deploy a cloud-hosted backend (AWS, Google Cloud, Microsoft Azure) that scales automatically based on user load and includes regional support for international availability. o Utilise a backend as a service (BaaS) or manage services for user authentication, data storage, and push notifications to simplify maintenance and improve scalability. Performance and Reliability o Set up a robust API infrastructure with load balancing to handle fluctuating user demand and deliver fast response times. o Ensure the infrastructure supports rapid data synchronisation, especially for content- heavy mobile apps, ensuring seamless transitions between online and offline use. Security o Enable end-to-end encryption for all data transmitted between the app, backend, and third-party services. o Regularly review and update app hosting security settings to address vulnerabilities, and use secure APIs to restrict unauthorised access. o Ensure compliance with data privacy regulations and secure storage for sensitive user data, especially personal identifiable information. Push Notification Service o Use a scalable push notification service (e.g., Firebase Cloud Messaging or AWS SNS) to support real-time updates and alerts for users. o Implement opt-in mechanisms and manage notification preferences within the app to improve user engagement. Monitoring and Logging o Implement application performance monitoring and logging to track app usage, errors, and crashes, using tools like Firebase Crashlytics or similar. o Use logs to analyse and troubleshoot errors, focusing on user experience and prompt issue resolution. 52 14th Road, Noordwyk, Midrand, 1687 +27 11 265 5901 scmtenders@ceta.co.za www.ceta.org.za of 67 Request For Proposal “Developing Skills. Serving Society”