Salesforce DevOps and Automated Testing Tool Solution - UPDATED
Project Information
- Bid Title
- Salesforce DevOps and Automated Testing Tool Solution - UPDATED
- Issuing Agency
- State Government of Tennessee
- Location
- Tennessee
- Published Date
- Apr 20, 2026
- Closing Date
- Apr 23, 2026
- Government Level
- State & Local
- Status
- Closed
- Ref. #
- RFI 31701-03828
- Original Source
- Join to Access Full Details
- Bid Inquiries
- Join to Access Full Details
- Bid Documents
- Join to Access Full Details
- Project Description
-
Document ID & Hyperlink: RFI 31701-03828
Amendment 2
Amendment 1Event Start - Response Due: 03/24/2026
04/23/2026Event Name: Salesforce DevOps and Automated Testing Tool Solution - UPDATED Last Updated: 04/20/2026
- Attachment Preview
-
STATE OF TENNESSEEFINANCE & ADMINISTRATION, STRATEGIC TECHNOLOGY SOLUTIONSREQUEST FOR INFORMATIONFORSALESFORCE DEVOPS AND AUTOMATED TESTING TOOL SOLUTIONRFI # 31701-03828March 24, 20261. STATEMENT OF PURPOSE:The State of Tennessee, Finance and Administration, Strategic Technology Solutions (STS)issues this Request for Information (“RFI”) for the purpose of identifying a Salesforce DevOps andautomated testing tool solution partner. We appreciate your input and participation in thisprocess.1.1. BACKGROUND: Salesforce is currently in use and is being adopted by a growing numberof agencies statewide. To safely and efficiently develop applications that support thisexpanding set of use cases, the state requires a dedicated DevOps platform capable ofmanaging multiple, self-contained sandboxes for Development, QA, System IntegrationTesting (SIT), and User Acceptance Testing (UAT) prior to production. To streamlinedevelopment cycles, improve deployment efficiency, and ensure consistent quality, theDevOps platform must integrate directly with Salesforce. Given the complexity of Salesforcecustomizations, automated testing is also essential to prevent regression and ensure thereliability of changes.2. PROPOSED SOLUTION(S): The State is seeking information on software solutions andcapabilities that currently exist from qualified vendors for a Salesforce DevOps and AutomatedTesting Tool Solution. Table 3.1 below represents the State’s List of Business Requirements forwhich the vendor should provide proposed solutions in their response. In accordance with Section7. Informational Forms, Technical Information Form Question 4, please demonstrate in yourresponse how your solution meets our requirements, if there is a feature that doesn’t currentlymeet the requirements, but is in development, or if your solution provides alternative functionalitythat may yield a similar outcome.Table 3.1: List of Business RequirementsNO. REQUIREMENT TITLEREQUIREMENT DESCRIPTIONVENDOR PROPOSED SOLUTIONFor each Requirement below, describehow the proposed solution fully meetsthe requirement, is currently indevelopment, offers alternative31701-03828Page | 11.0 FUNCTIONAL REQUIREMENTSContinuous Integration Automated builds, code linting, and static1.a. (CI)analysis on every commit.ContinuousDelivery/DeploymentAutomated deployment pipelines supporting1.b. (CD)multi-stage environments (Dev, Test, Prod).Ability to define pipelines using for version-controllable, infrastructure-as-code1.c. Pipeline Management configuration.Tools to manage backlogs, epics, user stories,1.d. Work Item Trackingand tasks, such as Azure Boards.End-to-end traceability from requirements to1.e. Traceabilitycode changes, builds, and releases.Real-time dashboards to track sprint progress1.f. Reportingand velocity.Ability to handle large teams and high-frequency deployment, with options for cloud-1.g. Scalabilityhosted or self-hosted agents.Build and ReleaseCentralized repository to manage packages1.h. Artifacts(e.g., Maven, npm, NuGet).2.0 TECHNICAL REQUIREMENTSSource Code2.a. ManagementInfrastructure as Code2.b. (IaC)2.c. Containerization2.d. Automated Testing2.e. Manual Testing2.f. Security Scanning2.g. Observability2.h. TelemetryIntegration with Git for distributed versioncontrol, branching, and pull request workflows.Support for tools like Terraform or Ansible tomanage infrastructure through code, ensuringconsistency.Support for container technologies such asDocker and Kubernetes for orchestration.Integration of automated test frameworkswithin the CI/CD pipeline.Capabilities to manage and execute manualtest cases, such as Azure Test Plans.Automated security analysis (DevSecOps)within the pipeline.Integrated monitoring to provide feedback onapplication performance in production.Tools to monitor deployment success ratesand application health.2.i. Automated testing toolPrimary and secondary2.j. hostingNative automated testing tools.Prefer (Primary) East coast and Secondary Mid-west (low latency and high accessibility).3.0 SUPPORT REQUIREMENTSfunctionality, or does not meet therequirement, and provide a briefdescription supporting your response.Availability of user training, documentation,3.a. Training & Onboarding and onboarding supportClear service uptime commitments, e.g.,3.b. SLA & Availability99.9% availability24/7 support options, multi-channel (email,3.c. Technical Supportphone, chat)User Community &Online support portal with FAQs, guides, and3.d. Knowledge Baseuser forumsWCAG 2.1 Level AA, ADA, Section 5083.e. Accessibility Compliance compliance4.0 SECURITY REQUIREMENTSIdentity and Access4.a. ManagementRole based access controls and integrationwith Azure AD in conjunction with State ActiveDirectory services.4.b. MFASeparation of Prod and4.c. Test Accounts4.d. ComplianceIntegration with State of TN SSO.Use Test accounts for Non-Prod and Prodaccounts for Production.Audit logs (Admin and tracking) for compliancepurposes.4.e. EncryptionAudit Logs and4.f. MonitoringCompliance4.g. CertificationsData encrypted in motion and at rest.Capability to log and monitor user activity forcompliance and troubleshooting.Support for SOC 2, ISO 27001, HIPAA, NIST800-53 and FedRAMP certifications5.0 AI REQUIREMENTS5.a. GeneralDoes this solution contain an AI model?5.b. Hosting5.c. DataIs application hosted in the US?What type(s) of data does the AI solution ingestor create?5.d. AI Training5.e. Opt Out Option5.f. Model Training5.g. Data Sensitivity5.h. Data Retention Policies5.i. Human in the Loop5.j. Third Party AssessmentDoes the AI model train from user data?How does the State of TN opt out of training theAI model?Who develops and trains the AI model: theenterprise internally or a third-party/vendor?Does this AI solution leverage a dataset fortraining or fine tuning that contains sensitiveinformation?Are there different data retention policies forthe user interface versus the API?Does the AI feedback process include humanre-enforcement (RLHF)?Has a third-party AI assessment beenconducted? If yes, where are the resultsavailable?3. COMMUNICATIONS:3.1. Please submit your response to this RFI to:Shannon Keefe, Contract SpecialistFinance and Administration, Strategic Technology Solutions901 Rep. John Lewis Way North, Nashville, TN 37243(615) 350-4244Shannon.Keefe@tn.gov3.2. Please reference RFI #31701-03828 with all communications to this RFI.3.3. Please limit all questions to one submission per vendor.4. RFI SCHEDULE OF EVENTS:EVENT1.RFI IssuedTIME(CentralTimeZone)DATE(all dates are State businessdays)Tuesday, March 24, 20262.Written Questions & Comments Deadline 2:00 PMTuesday, March 31, 20263.State Response to Written Questions &CommentsWednesday, April 8, 20264.RFI Response Deadline2:00 PMThursday, April 16, 20265. GENERAL INFORMATION:5.1. Please note that responding to this RFI is not a prerequisite for responding to any futuresolicitations related to this project and a response to this RFI will not create any contractrights. Responses to this RFI will become property of the State.5.2. The information gathered during this RFI is part of an ongoing procurement. In order toprevent an unfair advantage among potential respondents, the RFI responses will not beavailable until after the completion of evaluation of any responses, proposals, or bidsresulting from a Request for Qualifications, Request for Proposals, Invitation to Bid or otherprocurement methods. In the event that the state chooses not to go further in theprocurement process and responses are never evaluated, the responses to theprocurement, including the responses to the RFI, will be considered confidential by theState.5.3. The State will not pay for any costs associated with responding to this RFI.5.4. Any services or products proposed in this RFI, must be in compliance with the followingsecurity policy: all State data must remain in the United States, regardless of whether thedata is processed, stored, in-transit, or at rest. Access to State data shall be limited to US-based (onshore) resources only. Configuration or development of software and code ispermitted outside of the United States, however, software applications designed,developed, manufactured, or supplied by persons owned or controlled by, or subject to thejurisdiction or direction of, a foreign adversary, which the U.S. Secretary of Commerceacting pursuant to 15 C.F.R. 7 has defined to include the People's Republic of China,among others are prohibited. Any testing of code outside of the United States must use fakedata. A copy of production data may not be transmitted or used outside the United States.5.5. The State may request demo presentations from selected RFI respondents.5.6. Responses should be prepared, with emphasis on completeness and clarity, and shouldNOT exceed fifteen (15) pages total in length. Responses, as well as any reference materialpresented, must be written in English, and must be written on standard 8 ½” x 11” pagesand all text must be at least a 12-point font. All pages must be numbered.6. INFORMATIONAL FORMS:The State is requesting the following information from all interested parties. Please fill out thefollowing forms:RFI #31701-03828TECHNICAL INFORMATIONAL FORM1. RESPONDENT LEGAL ENTITY NAME:2. RESPONDENT CONTACT PERSON:Name, Title:Address:Phone Number:Email:3. Provide a brief description of company background and experience providing similar scope ofsolutions that have been implemented in other states or local governments.4. For each requirement in Table 3.1: List of Business Requirements, indicate whether yoursolution Meets, Is In Development, Provides Alternate Functionality, or Does Not Meet therequirement and briefly describe how your solution supports the intended outcome.5. Describe your solution’s security and privacy controls:• Role-based access control (RBAC)• Multi-factor authentication (MFA)• Data encryption in transit and at rest• Data storage and retention policies• Compliance with State privacy and cybersecurity frameworks• Supported industry-standard authentication and authorization protocols (e.g., OAuth 2.0,SAML 2.0, etc.)• FedRAMP compliant• GovCloud complaintSummarize any other adherence to privacy, security, and data governance standards,including strategies and SLAs to mitigate system disruptions during implementation.6. Provide an overall project timeline to implement a solution that meets the List of BusinessRequirements in Table 3.1 of this RFI, including phases, milestones, and State resourceobligations in each step. Please include knowledge transfer, training and post-implementationtechnical support into your timeline.7. Outline your technical roadmap for enterprise-wide adoption of your solution.
- Commodity Codes
-
- NAICS 541511Custom Computer Programming Services
- NAICS 541512Computer Systems Design Services
- NAICS 541519Other Computer Related Services
* Disclaimer: Government BidHub provides information on bids, RFPs (Requests for Proposals), and RFQs (Requests for Qualifications) solely for convenience and informational purposes. This site is not an official public notice board. For official details, responses, or inquiries, please contact the relevant government agency directly.
Empower Your Bidding Strategy
Unlock Government BidHub's unparalleled access to high-quality, tailored bid information.
- Access an extensive database of bids, including comprehensive local and state opportunities.
- Receive customized alerts for the bids that matter most to your business.
- Explore detailed specifications to ensure precise and competitive submissions.
- Gain a competitive edge with up-to-date information and exclusive opportunities.
See Also
RFQ - Point-of-Sale Hardware ...
Due Date Description Purchasing Contact 7/23/2026 RFQ - Point-of-Sale Hardware & Technology Tina
Tennessee Tech University
Bid Due: 7/23/2026
RFQ - Point-of-Sale Hardware ...
Due Date Description Purchasing Contact 7/23/2026 RFQ - Point-of-Sale Hardware & Technology Cost
Tennessee Tech University
Bid Due: 7/23/2026