Managing Your Portfolio of Contract Solicitation Opportunities

Not sure if you should bid on that government contract solicitation you just received?  Do you feel confident that your qualifications and experience meet the scope of work requirements?  Do the chances of winning the contract justify your time filling out all those government forms and answering all those RFP questions?

Well, as usual, you are not alone.

You’ve got an important decision to make and government contract solicitations typically don’t give you much time to respond.  And they’re very demanding in how you respond.  Forget to fill-out a form, or properly address a question (direct or implied) and they WILL either kick your proposal to the curb (aka declare you “unresponsive”) or subtract prized evaluation points from your bid and maybe award the contract to your competitor.

So, do you just a take chance, jump in and hope for the best?  REALLY?  Is that how you handle your personal finances . . . just tell your accountant or broker “let it ride on Enron and hope for the best?” Perhaps you should think of a better way to manage your portfolio of contract solicitation opportunities.

Investopedia tells us that “portfolio management is the art and science of making decisions about investment mix and policy, matching investments to objectives, asset allocation […] and balancing risk against performance.”  They sum it up nicely by saying “Portfolio management is all about determining strengths, weaknesses, opportunities and threats” in choices.

What’s true about financial portfolio management is also true for responding to the right government contract solicitation.  You are investing your organization’s time, resources and money on a chance to win a contract.  Like stocks and bonds, you need to select the right contract solicitations that reflect your risk tolerance, meaning how much resources are you willing to put on the line for a contract you might not win? Also important for winning contracts, you must select those opportunities that are most compatible to your organization’s capabilities and qualifications.

And like selecting stocks and bonds, a common mistake in picking contract solicitations is making incorrect assessments.  What I mean by that, for contract solicitations, is that if you are not careful, you will misinterpret the requirements listed in the opportunity’s statement of work requirements.

All too often we read what we want to see in a solicitation, not what’s in there.  And many times, as we read a solicitation, we jump right into thinking what the solicitation SHOULD be requesting, not what it is ACTUALLY asking.  It’s all too easy and natural for us to say, oh, they should really be asking for this and not that or thinking that your organization’s way for addressing a problem is better than what the solicitation is looking to implement. Continue with that train of thought and you are on your way to not winning the contract.

It doesn’t matter if your approach, method, product or solution is the best thing since sliced bread or toilet paper.   Remember, that old adage, the customer is always right?  It doesn’t mean you follow them blindly.  It just increases your chances to stay in the game, to be the one given a chance to change minds after you win the bid.

The key to success here is that you must line up the solicitation’s stated requirements (whether you agree with them or not) against what your organization can (or is willing) provide.  Make it a cold-hearted yes or no assessment.  Only after you have done that will you be in a better position to determine if that solicitation should be added to your portfolio of contract opportunities you intend to risk your time, resources and money to win.  But you knew that already, right?

Well, I’m not so sure about that since several people told me that the client would be better off with their solution and not what is stated in the solicitation.  Funny thing is that they followed up with, why wasn’t their stellar solution not chosen?   So, I decided to post this blog.

Simple as that.  Well, not so. . .   Next week, I’ll post an easy tool you can use to help you make that honest assessment and decide if you should invest your time, resources and money to respond to that contract solicitation.  Stay tuned or follow my blog for the tool.

WANTED: IT PMO Strategist & Change Agent

Virtual TeamI’m looking for an Enterprise Project/Program Management Office subject matter expert to join our team for a contract opportunity. This person should have in-depth experience with public state and/or federal agencies across multiple IT systems and infrastructure.

Work includes coordinating with our organizational change group as part of an extensive top-down study evaluating the client’s PMO organizational structures and recommending/implementing changes to optimize performance, quality, effectiveness and efficient use of resources.

Please contact me if interested or feel free to forward this opportunity to your network. This is a quick response contract opportunity, so we need to hear from you now!

WANTED! A Lean Process Improvement Trainer

I’m looking for a lean process improvement subject matter expert to join our team for a contract opportunity. This person should have in-depth experience with public state and/or federal agencies. Work includes helping/training our client to put in place lean decision making processes for improved project execution efficiencies.

Please contact me if interested or feel free to forward this opportunity to your network. This is a quick response contract opportunity, so we need to hear from you now!

Bid vs. Proposal What’s the Difference?

While scanning State and Federal agency contracting sites, I’ve seen different uses of the words “bid” and “proposal.”  From the contractor/supplier point of view, these terms may seem interchangeable.  Indeed, it even seems that some government contracting agencies use these terms as synonyms. In the second edition of his 2016 book, “Contracting for Services in State and Local Government Agencies,” William Sims Curry tells us that in a 2015 research project, only 73% of contracting agencies reported that “they used the term ‘proposal’ exclusively when referring to contractor responses to RFPs.”

Bid vs. Proposal, What Is the difference?

From a best-practice prospective, there is a significant difference between these two words.  Using these terms as synonyms could lead to misunderstandings of a government agency’s intention in terms of how the information contained in Request for Proposals (RFP) or Invitation for Bids (IFB) responses will be treated.  Such confusion can lead to contractor/supplier protest, resulting in delayed decisions and unwanted legal actions and publicity.   Curry tells us that “these terms cannot be used interchangeably because each type of solicitation is unique and subject to differing rules.”

So here are the rules for using “bid” and “proposal.”

The word “bid” should only be used to describe a response to an IFB or Request for Bid (RFB).  These solicitations are typically straight forward initiatives to secure commodities, capital equipment or construction work and normally not services.  Bid responses are always subject to disclosure at public openings and are not subject to (price, terms & condition, timing, etc.) negotiation.

On the other hand, the term “proposal” is only used to describe a response to a RFP, which is used primarily to secure services or a combination of products and services. RFPs are more complex than IFBs or RFBs due to the nature of their requirement, which can be satisfied in different ways.  The RFP is designed to help the contracting agency understand the various proposed methods and approaches that can be used to meet the requirement.  The variability of responses may include information considered proprietary, confidential, sensitive or a competitive secret by the proposing contractor/supplier.  For that reason, and the fact that provisions of the proposal are subject to negotiations, the details provided in contractor proposal responses are typically not subject to immediate public disclosure.   The reason for this is that the contracting agency, after reviewing a proposed approach to satisfying the RFP requirement, may desire changes to a prospective contractor’s approach in terms of timing, methodology, resourcing, objectives, cost, etc.   The contractor recommended by the contracting agency will most likely be selected if both parties can agree to the changes.

So, What Does This Mean To You?

If you are the contracting agent, you will want to adhere to the described usages of the terms “bid” and “proposal.”  If, for any reason, you cannot then make sure to at least clearly state your intention of how the information contained in received proposal and bid responses will be disclosed.  Government agencies tend to be bound by laws requiring more transparency than private corporations when it comes to disclosing responses. I have seen options offered by governmental agencies to allow contractors to submit a redacted version of their proposals to satisfy the need for subsequent public disclosure of RFP responses.

If you are a contractor/supplier, know that not all contracting agencies adhere to the same usage/treatment of the terms “bid” and “proposal” as described in this blog.  You may want to reconsider responding to a RFP where the contracting agency or organization intends to disclose sensitive information contained in your response to the public—and your competitors.  Most contracting agencies do not publicly disclose proposal information prior to contractor selection. However, after a contractor has been selected, proposals are normally subject to public release rules unless the contractor marked certain portions of its proposal as “proprietary.” Contracting agencies normally reserve the right to determine whether information marked “proprietary” by the contractor is actually proprietary. There are ways to mitigate this risk but you will want to read the nitty gritty details contained in that RFP. In any case, you should submit written questions to the contracting agency requesting clarification.

Lifecycle To Winning That RFP – Part 2

This is the second of my three blog series that describe the essential elements to winning that Request for Proposal (RFP) or Request for Quotation (RFQ).  I’ve boiled down the lifecycle to winning a RFP or RFQ into three main phases: Identify, Qualify and Respond.  

The first blog installment described challenges and suggestions to identify RFP or RFQ solicitations.  This second installment addresses the question – “But is that RFP or RFQ solicitation you found really for you?”


There’s a growing number of contract opportunities across all disciplines such as: Information Technology, construction, education, transportation, training, management consulting, landscaping, janitorial, marketing and all sorts of commodities.  So, when you find out about a juicy contract opportunity, you may be tempted to jump right in and crank out a response.

Problem is, not all contract opportunities you receive are meant for you.  Just because a RFP calls for a service or product you provide, searching in the darkdon’t think your organization is the best candidate.  Unless you can figure out a way to assess your chances of winning those opportunities, you will waste a lot of time, money and resources responding to proposal solicitations you will never win.

Avoid searching for the right RFP or RFQ opportunity in the dark.  You need to shine a light that shines way beyond the obvious question of whether you can satisfy the scope of work. For example, consider these three questions in terms of your organization’s: goals/objectives, culture, size, industry, etc.

  • What is the real purpose of the RFP or RFQ solicitation? Does the contractor really want your business or is s/he just price checking to ensure that a preferred vendor’s offer is competitively priced?
  • How important is relative experience in the industry represented by the RFP or RFQ contractor? I’m not talking about the industry inferred by the scope of work requirements but rather the organization that issued the solicitation.
  • Can the “size” of the project be perceived to outweigh the “size” of your organization in the eyes of the RFP or RFQ contractor’s vendor response evaluation person or committee?

There are many more considerations, some of which I described further in another blog post.  You will certainly want to tailor your scrutiny to fit your organization. But please remember this one important fact.  Only when you understand the complete story behind that RFP or RFQ solicitation will you be able to decide if it is the right one for you.

OK, now that you have selected the right RFP or RFQ that truly fits your business, it’s time to craft a winning response.  I’ll talk about that in my next blog post.

Want to know more? Can’t wait for my next blog entry on the lifecycle to winning that RFP response?  Then check out this link to my website that describes my services around this need.


Lifecycle To Winning That RFP – Part 1

Winning that Request for Proposal or Quotation (RFP or RFQ) is not an easy thing to do.  It’s a large numbers game where you have to carefully select the right opportunity then figure out how to get your message across in a way that gives your organization the most vendor evaluation scoring points.

To help make things a bit easier, I’ve boiled down the lifecycle to winning a RFP or RFQ into three main phases: Identify, Qualify and Respond.  I’ll talk a little about each in three separate blog posts.

This first installment concerns finding RFP or RFQ solicitations.


papers flyingLike potholes on the road, there are plenty of Request for Proposal or Quotation (RFP or RFQ) opportunities out there vying for your attention.  A casual search shows a growing number of contract opportunities across all disciplines such as: Information Technology, construction, education, transportation, training, management consulting, landscaping, janitorial, marketing, all sorts of commodities, etc.  The Internet is filled with search engine sites (BidsUSA and FindRFP to name a few) to notify you of RFP or RFQ opportunities that fit the conditions you specify. Be aware that some of these search services are paid subscription based.

For state and federal RFP opportunities, you can save a ton of money by registering your company on various state and federal government contracting sites.  There, you will get automated notifications of solicitations based on the industry classification codes you provide.  Registering your business with government contracting sites can be a complex, time consuming pain in the butt process with plenty of bureaucratic check points and hoops to jump through.  But in the end, it is worth the effort. You may even discover an opportunity to develop a one-on-one relationship with a government contracting agent, which may prove helpful to find opportunities that don’t require a published solicitation.

But is that RFP or RFQ solicitation you found really for you?  I’ll talk about that in my next blog post.  

Want to know more? Can’t wait for my next blog entry on the lifecycle to winning that RFP?  Then check out this link to my website that describes my services around this need.


Does That RFP Smell Phishy?



How do you know that RFP solicitation you just received is real?

You don’t, unless you know what to look for and are aware of the threat.



For clients, I monitor and evaluate RFP/RFQ opportunities from various state, federal and corporate agencies across the US and just received this message from the Maryland State Dept of Information Technology.

Subject: Message to Vendors regarding fraudulent emails

State of Maryland has been made aware of a new phishing scam that targets the community of vendors doing business with the State of Maryland. A phishing attack occurs when a fraudster tries to trick you into sharing personal information online.


In Todd R. Weiss’ online article “$100M Email Phishing Case Offers Lessons Learned for IT,” Neil Wynne, an IT security analyst with Gartner warns that “business email attacks have been occurring with significantly higher frequency in recent years.”

Have you received phishing email?  If your answer is no, then you don’t know what the threat looks like.  It is safe to say that EVERYONE on this planet who is Internet connected has received one of these email based IEDs (or Internet Explosive Devices as I like to call them).  So what do you do when you receive one of these?

The answer varies with your situation but there are some common actions and things to know, consider and do.  For example . . .

In it’s email warning, Maryland State Dept of Information Technology helped its existing and potential vendors/suppliers by doing two things:

First was to educate by saying:

“The scam attempts to lure vendors into taking certain actions, including visiting a fraudulent website to input personal information and/or to download malicious programs. Other messages request that the vendor remit payments and provide remittance information within the body of the message in the form of a routing and account number.

The State of Maryland does not request payment or ask its vendors to provide personal information via email.”

The second was to create a call to action with the following statement:

“If you receive an email similar to the ones below, don’t reply. You should delete the message immediately. Do not open attachments, click links contained in the email, or provide any data to the websites mentioned or linked. Refrain from remitting payment to bank account information provided.

Update your subscriptions, modify your password or email address, or stop subscriptions at any time on your Subscriber Preferences Page.”


Maryland State Dept of Information Technology’s approach is good! But the one BIG thing I did not like about their email warning is that it had links.  That immediately raises a red flag in my mind.

What I have more commonly seen is a statement that says something like feel free to visit the institution’s website or call if you have any questions. No links or phone numbers are provided in those messages. Given the nature of the situation, rather than rely on email links, I think it is understandable that you should use the contact information already on hand to establish any desired communications to the institution.  After all, how do you know that someone didn’t send out a fake message pretending to be the Maryland State Dept of Information Technology? Yea, yea, I know this can get real squirly. So what is the solution?

In Todd’s article we read that a key tool to fighting phishing attacks “is a secure email gateway” along with a host of other rather complicated security technology solutions.  But reliance just on technology is not the ideal solution here, especially for budget wary or non-tech savvy small businesses.   Also, I take Wynne’s statement about how “attackers are easily bypassing these traditional prevention mechanisms,” one step further to say that attackers (especially those who are well financed) will continually exploit the inherent insecurity in our Internet that was originally meant to be open to all.  For example, did you ever wonder why Microsoft is always sending out Windows security updates and patches?  Bottom line here is you need more than technology to fight this problem.

Ultimately, the solution lies not with technology alone but in combination with human beings recognizing suspicious emails and deciding what should be done.   I think Gartner’s Neil Wynne agrees when he said “ultimately, the fact remains that human beings are the most vulnerable point of any information system.”

Whatever you do, the last line of defense against phishing attacks will always be employees who must receive the latest training to help them recognize and respond to phishing attacks and encouragement to remain vigilant or else as Rob Enderle, principal analyst at research firm Enderle Group warns “over time, people tend to start thinking it will never happen to them…”

phishing-attack 2


So, do you know when someone is phishing for your confidential information?

Check this image to learn the signs or (if you don’t trust my links) just Google “stop phishing attacks.”