Talent Attraction Platform

Attract potential teachers to join the industry by leveraging digital platforms that are integrated with ECDA's systems.

Instructions

• This page helps you prepare "Solution Requirements" section in Vendor Management Portal and you will see the exact questions and flow.

• 🔴 Mandatory questions: Must answer "Yes" to continue

• 🟡 Preferred questions: Can answer either way and continue

• Follow the question flow as indicated

Q1 🔴 Mandatory - Cloud and Multi-Device Accessibility

Main Question: Does your solution allow for cloud-based, mobile-based, and/or web-based usage?

🔴 Answer: ○ Yes [Next: Q2] ○ No [⚠️ Cannot Proceed]

Q2 🔴 Mandatory - Outreach, Attract and Recruit Staff Including ECEs (Early Childhood Educators)

Main Question: Does your solution:

Core Functionality Requirements: a. Allow operators to advertise the careers/openings available with a short write-up and update the listing as and when required b. Allow potential applicants to upload their CVs and other documents e.g. certifications c. Provide surveys for potential applicants to use to assess their suitability for an EC career (i.e. job fit and organisation fit) and for operators to evaluate these applicants' suitability d. Embed Candidate Relationship Management (CRM) to allow two-way conversations between operators and applicants e. Notify operators each time a job application is sent in automatically (Notification settings should preferably be configurable for operators to edit frequency and recipients of the notifications) f. Obtain applicant's consent for the submission of personal particulars to the operator

🔴 Answer: ○ Yes [Next: Q3] ○ No [⚠️ Cannot Proceed]

Q3 🟡 Preferred - Application Tracking

Main Question: Does your solution allow operators to update the status of each application received, and perform the following:

Application Management Features: a. Track and inform operators from the point when each application is received till the point when evaluation of the application is complete i.e. applicant is hired or rejected b. Remind operators to process and update each application or status at various intervals (e.g. 30 days after application is received and/or 30 days since application has been last updated from applied to processing or processing to approved/rejected)? c. (If required by the operator) Send automated email replies based on pre-defined templates to update applicants of the status of their application e.g. processing, rejected, accepted, etc.

🟡 Answer: ○ Yes [Next: Q4] ○ No [Next: Q4]

Q4 🟡 Preferred - Employee Database Management

Main Question: Does your solution manage operators' part-time and relief staff database in accordance to the operator's data management policies, such as:

Database Management Capabilities: a. Store a list of applicants who have applied for positions prior b. Store a list of part-time and relief staff which includes their names, contact number, certifications, availability and their work history at the various centres (if an operator has more than 1 centre) c. (If applicable) Allow the lists mentioned in (a) and (b) to be accessed by a customisable list of users/ centres of the same operator d. Allow part time staff and applicants to amend their particulars at their own time e. Allow part time staff and applicants to select the dates they are able to work with the system matching these ECEs to centres with vacancies and notify operators of such matches

🟡 Answer: ○ Yes [Next: Q5] ○ No [Next: Q5]

Q5 🟡 Preferred - Job Applications and Onboarding

Main Question: Does your solution:

Advanced Application Features: a. Have a video conference function for operators to interview shortlisted applicants b. Come with AI capabilities e.g. matching of applicant to available openings based on certification / years of experience submitted c. Include a personalised module for selected applicants to submit necessary documents for onboarding purposes (e.g. certificates, testimonials, etc.) d. Allow virtual tours of the centre for orientation purposes

🟡 Answer: ○ Yes [Next: Q6] ○ No [Next: Q6]

Q6 🟡 Preferred - Job Application Status Tracker

Main Question: Does your solution allow potential applicants to track the status (e.g. Applied, Processing, Approved, Rejected, etc.) of their applications at any point of time and subscribe or unsubscribe to operator's job mail subscription, such as:

Applicant Self-Service Features: a. Send an auto message that the application is received after an applicant has applied for a role b. Allow potential applicants to subscribe and unsubscribe to receive alerts on job openings on a regular basis

🟡 Answer: ○ Yes [Next: Q7] ○ No [Next: Q7]

Q7 🔴 Mandatory - Dashboards and Reports Retrieval

Main Question: Does your solution allow users to retrieve data analytics or reports in formats such as graphs and tables? e.g. the number of ECEs applying for positions in a particular months, the number of viewers clicking on listings, etc.

Technical Requirements: Your digital solution should have one or more dashboards that provide an at-a-glance overview of key metrics/indicators with at least 4 charts/graphs to help users analyse data through data visualisation.

Interactive Features Required: The dashboard must include at least one of the following interactive features: Option 1: Interactive charts/graphs that allow users to interact with one chart and apply that interaction as a filter to other charts on the dashboard, and vice versa Option 2: At least three common filters/slicers applicable to ALL charts/graphs on the same dashboard

🔴 Answer: ○ Yes [Next: Q8] ○ No [⚠️ Cannot Proceed]

Q8 🟡 Preferred - Professional Services

Main Question: Does your solution include support services to support preschools on the above requirements such as technical support etc.?

🟡 Answer: ○ Yes [Next: Q9] ○ No [Next: Q9]

Q9 🟡 Preferred - Third-Party Integration

Main Question: Is your solution currently integrated with the pre-schools' existing IT systems ?

🟡 Answer: ○ Yes [Next: Q10] ○ No [Next: Q11]

--

Q10 🔴 Mandatory Follow-up - Third-Party Integration - Elaboration

This question appears only if you answered "Yes" to Q9

Main Question: Briefly describe the integrations currently available with the pre-schools' IT systems.

Click "Yes" to confirm you have completed the instructions.

🔴 Answer: ○ Yes [Next: Q11] ○ No [⚠️ Cannot Proceed]

Text Elaboration Required: [Text Box for Description/Details]

Q11 🟡 Preferred - AI Features

Main Question: Does your solution incorporate AI in your core features and functions?

🟡 Answer: ○ Yes [Next: Q12] ○ No [Next: Q13]

--

Q12 🔴 Mandatory Follow-up - AI Features - Elaboration

This question appears only if you answered "Yes" to Q11

Main Question: Describe your AI feature and its benefits. Examples are:

Examples: a. Generate output, identify items, or provide recommendations based on training models to improve decision-making b. Recognise text, images to shorten time taken for manual inputs of forms c. Others, please specify

Click "Yes" to confirm you have completed the instructions.

🔴 Answer: ○ Yes [Next: Q13] ○ No [⚠️ Cannot Proceed]

Text Elaboration Required: [Text Box for Description/Details]

Q13 🔴 Mandatory - Business Data Extraction

Main Question: Can your solution enable SMEs to efficiently extract business data in various discrete formats such as CSV, XLSX, XML, and TSV?

🔴 Answer: ○ Yes [Next: Q14] ○ No [⚠️ Cannot Proceed]

Q14 🔴 Mandatory - Personal Data Protection

Main Question: Can your solution demonstrate compliance with the following Personal Data Protection requirements?

Compliance Requirements: Digital solutions that collect, use, disclose, process or dispose personal data should incorporate features that support the obligations under the Personal Data Protection Act (2020).

To comply with this requirement, you MUST complete the Personal Data Protection Requirements form at https://go.gov.sg/pdp.

🔴 Answer: ○ Yes [Next: Q15] ○ No [⚠️ Cannot Proceed]

Q15 🔴 Mandatory - Vulnerability Assessment/Penetration Testing (VA/PT)

Main Question: Has your solution undergone a comprehensive security vulnerability assessment/penetration testing (VA/PT) conducted by a qualified third-party within the last 12 months? The scope of the VA/PT must cover network security; application security; data protection measures and access control (if applicable); API security testing (if applicable); Cloud security configuration review (if applicable). Specifically, for web application security, the scope must cover minimally all OWASP Top 10 vulnerabilities.

Submission Requirements: Please submit the VA/PT report (dated maximum 1 year from the checklist submission date). The VA/PT Report must include Executive summary; Detailed findings and risk ratings; Remediation recommendations; Evidence of vulnerability fixes or mitigation plans; Testing methodology used; Scope of assessment; Assessor's qualifications and certifications.

If you are the reseller of the solution, please obtain the VA/PT report from your product principal. SOC 2 Type II report can be accepted if the detailed technical vulnerability assessment results are part of the SOC2 Type II scope.

Note: [1] Qualified third-party refers to: CREST-certified companies [ https://www.crest-approved.org/members/] or companies with security professional with relevant CREST certifications; Security professionals with recognised certifications such as: Offensive Security Certified Professional (OSCP); EC-Council Certified Penetration Testing Professional (CPENT); GIAC Penetration Tester (GPEN); or other equivalent industry-recognised certifications.

Click "Yes" to confirm you have completed the instructions.

🔴 Answer: ○ Yes [Next: Q16] ○ No [⚠️ Cannot Proceed]

Date of Issue Required: [Date Field] Upload Supporting Document Required: [File Upload]

Q16 🟡 Preferred - Cybersecurity Compliance - Cyber Essentials Mark (CEM)

Main Question: Are you the Product Principal of the solution that you are submitting for pre-approval?

🟡 Answer: ○ Yes [Next: Q17] ○ No [Next: Q19]

Q17 🟡 Preferred - CEM for Product Principal

Main Question: Has your organisation achieved CSA Cyber Essentials for ICT Vendor Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval?

Additional Information: Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory.

Note: For more information on Cyber Essentials mark, please refer to https://www.csa.gov.sg/cyber-essentials/

🟡 Answer: ○ Yes [Next: Q18] ○ No [Assessment Finished]

--

Q18 🔴 Mandatory Follow-up - CEM for Product Principal - Elaboration

This question appears only if you answered "Yes" to Q17

Main Question: Please specify the following information:

Required Information: i. The certificate demonstrating your organisation has attained Cyber Essentials for ICT Vendors ii. The cybersecurity certification the organisation has met iii. The scope of the certification

Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field.

Click "Yes" to confirm you have completed the instructions.

🔴 Answer: ○ Yes [Assessment Finished] ○ No [⚠️ Cannot Proceed]

Date of Issue Required: [Date Field] Upload Supporting Document Required: [File Upload]

Q19 🟡 Preferred - CEM for Resellers

Main Question: Has your organisation achieved CSA Cyber Essentials Mark certification or equivalent recognised cybersecurity certifications (including but not limited to Cyber Trust Mark or ISO27001) that validate the implementation of appropriate security controls against common cyber threats in your organisation and the solution you are submitting for pre-approval?

Additional Information: Vendors are encouraged to comply at application and are required to meet this requirement by the Annual Review, where it will be assessed as mandatory.

Note: For more information on Cyber Essentials mark, please refer to https://www.csa.gov.sg/cyber-essentials/

🟡 Answer: ○ Yes [Next: Q20] ○ No [Assessment Finished]

--

Q20 🔴 Mandatory Follow-up - CEM for Resellers - Elaboration

This question appears only if you answered "Yes" to Q19

Main Question: Please specify the following information:

Required Information: i. The cybersecurity certification the organisation has met ii. The scope of the certification

Please also upload a copy of the Certification and indicate the Certification Issuance Date in the date field.

Click "Yes" to confirm you have completed the instructions.

🔴 Answer: ○ Yes [Assessment Finished] ○ No [⚠️ Cannot Proceed]

Date of Issue Required: [Date Field] Upload Supporting Document Required: [File Upload]