Application Identification and Access Control Solution

Overview

Cybersecurity & Data Privacy

Alaska, United States; Rancho Cucamonga, California, United States; District of Columbia, United States; California, United States; California, United StatesPosted 2 months agoDeadline: March 26th, 2026

Fit Score

Settle Intelligence

Settle helps teams find, evaluate, and respond to public RFPs. We continuously surface new opportunities, score them against your company strengths, and draft proposal responses so you can focus on the work that wins business.

SUMMARY

The agency seeks a comprehensive access control solution to manage, monitor, and restrict application behavior and installation across all endpoints, including strict AI usage enforcement.

KEY REQUIREMENTS

BUDGET

Estimate

$750,000 – $1,500,000

CONTRACT DURATION

12 months

TIMELINE

RFP release date: February 26th, 2026

Bidder Questions Due: March 10th, 2026

Bidder's Proposals Due: March 26th, 2026

Bidder Demonstrations: April-May 2026

Demonstration includes: Introduction and Vendor Overview (5 minutes), Endpoint Visibility and Continuous Monitoring (5 minutes), Automated Enforcement of Security Policies (5 minutes), Application Control and Execution Management (5 minutes), Policy Simulation and Pre-Deployment Testing (5 minutes), Operational Efficiency and Low Agent Overhead (5 minutes), Removable Media and Device Control (5 minutes), Privilege Management and Elevation Controls (5 minutes), Endpoint Detection + Network Controls (5 minutes), Compliance Alignment and Reporting (5 minutes), Managed Services – Cyber MDR & Cyber Approvals (5 minutes), Q & A Period (5 minutes).

QUESTION DEADLINE

March 10th, 2026

Issuing Agency

Inland Empire Health Plan

Organization overview and procurement intelligence available on paid plans.

See Issuer Research

DESCRIPTION

The organization seeks a vendor to implement an enterprise-wide solution focused on preventing unauthorized application installation and execution, reducing malware and ransomware risks, and enforcing granular control over application behavior and user privileges. The platform must provide visibility into unauthorized software, libraries, dependencies, plug-ins, and extensions, as well as integrations across browsers, IDEs, and containerized environments. Regular monthly scanning and reporting of all installed applications, browser extensions, and software components is required.

The solution must integrate seamlessly with the existing ecosystem and enforce deny-by-default application execution policies on all endpoints. It should automate the discovery, profiling, and allow listing of applications, and include ringfencing capabilities to restrict application permissions and prevent unauthorized actions such as macro, PowerShell, or CMD executions. Additional requirements include elevation control to manage administrative privileges at the application level, configuration management for enforcing security baselines, and application allow listing with deny-by-default enforcement.

The platform must support Windows 10+, Server 2012+, macOS, Linux, iOS, and Android, and provide a centralized dashboard for device and application telemetry and compliance. Unified management with dynamic policy allocation is required. AI usage monitoring and strict enforcement policies against AI-related executables and browser-based access (such as ChatGPT and GitHub Copilot) are also specified. The contract is for one year.

Source attribution

This Settle analysis is based on the issuing organization’s public RFP listing.