Commitment

The Federal Home Loan Bank of Chicago strives to partner with suppliers that are cost competitive, value strong customer service, and are dedicated to excellence.

View a list of products and services typically purchased by FHLBank Chicago.


Vendor Sourcing Opportunities

Please respond to opportunities by completing our Prospective Vendor Submission Form or by emailing vendormanagement@fhlbc.com prior to the deadline date for each opportunity. 

 

Vendor Opportunity: Enhanced Certificate Lifecycle Management RFQ

The Federal Home Loan Bank of Chicago is seeking a qualified vendor to design, implement, and operationalize the Bank’s Certificate Lifecycle Management (CLM) solution CyberArk (Venafi) to ensure security, governance, compliance, and scalability. The solution must automate certificate issuance, renewal, and inventory management, while preparing for Post-Quantum Cryptography (PQC) standards. If your organization has the capabilities and experience to deliver the key objectives below we invite you to provide your interest in participating in the RFQ by completing the Prospective Vendor Submission Form below (reference RITM0169847 Enhanced Certificate Lifecycle Management RFQ), or by emailing vendormanagement@fhlbc.com prior to 4:00pm January 15, 2026.  

The Federal Home Loan Bank of Chicago (FHLBC) key objectives include: 

  • Automating certificate issuance, renewal, and inventory management to reduce operational risk and prevent outages. 
  • Integrating with existing enterprise systems for seamless workflows. 
  • Supporting crypto-agility and preparing for Post-Quantum Cryptography (PQC) standards to future-proof our infrastructure. 
  • Development of architectural diagrams, procedures and other documentation as required to support ongoing development of post implementation.  

Vendors with proven experience in PKI, cryptography, and CLM implementations are encouraged to respond. 

 

 

Vendor Opportunity: DevSecOps Formal Platform Partner 

The Federal Home Loan Bank of Chicago is seeking a specialized service provider with proven expertise in implementing and integrating DevSecOps capabilities across people, process and technology domains. If your organization has the capabilities and experience to deliver the services below we invite you to provide your interest in participating in the RFP by completing the Prospective Vendor Submission Form below (reference RITM0171144 DevSecOps Formal Platform Partner RFP), or by emailing vendormanagement@fhlbc.com prior to 4:00pm January 9, 2026.  

Scope of Services Includes, but not limited to: 

  • Migration to GitHub from Azure DevOps and related integrations 
  • Integration of GitHub Co-pilot in relevant DevSecOps processes 
  • Secure SDLC buildout and agile methodology enablement 
  • Enterprise Test Automation, Test Data Management, and Test Region Management 
  • Static Application security Testing (SAST), software composition analysis (SCA) and Dynamic application security testing (DAST) 
  • CI/CD pipeline development and Infrastructure as Code 
  • Artifact management and code quality 
  • Enterprise Containerization 
  • Enterprise Observability and Application monitoring  

We’re interested in vendors who have proven expertise in the following areas: 

  • Experience delivering enterprise-grade DevSecOps solutions, including both strategic planning and hands-on implementation across people, process, and technology. 
  • Strong knowledge of application security best practices and compliance standards, with demonstrated capability to architect, integrate, and operationalize security controls throughout an AI-driven software development lifecycle, ensuring robust protection and regulatory alignment from design through deployment. 
  • Proven ability to integrate tools and processes across multiple environments, ensuring seamless interoperability and automation between platforms such as Azure DevOps, GitHub, Terraform, Docker, JFrog Artifactory, Checkmarx, SonarQube, AWS, and observability solutions.
  • Expertise in:
    • Automation, cloud-native technologies (leveraging AWS), and modern software development practices to drive efficiency, scalability, and resilience. 
    • Test automation, test region management, and test data management to ensure high-quality, reliable, and repeatable testing processes across the enterprise.
    • Enterprise container solutions and adherence to industry best practices for secure, scalable, and maintainable containerized application environments.
    • Integration of GitHub Copilot with CI/CD pipelines and other DevSecOps processes to enhance developer productivity and embed AI-driven capabilities throughout the software delivery lifecycle. 

This Request for Proposal (RFP) is open to vendors offering scalable, trustworthy, and forward-thinking approaches to bank’s existing technology landscape that aligns with enterprise architecture and security’s North Star.  

 

 

Vendor Opportunity: Vendor Due Diligence & Monitoring Automation 

The Federal Home Loan Bank of Chicago is exploring innovative technology solutions to automate and enhance vendor due diligence and ongoing monitoring. With a large and diverse vendor population, we’re aiming to enhance oversight where it matters most—focusing on automation, integration, and risk visibility   If you meet the requirements below, please respond by completing the Prospective Vendor Submission Form below (reference  RITM0168367 Vendor Due Diligence & Monitoring Automation RFS within the form), or by emailing vendormanagement@fhlbc.com prior to 4:00pm December 15, 2025. 

We’re interested in learning about platforms that can:

  • Automate due diligence collection and validation
  • Monitor vendors for financial, compliance, and cybersecurity risks
  • Integrate via API with ServiceNow and Riskonnect
  • Provide configurable workflows, alerts, and audit-ready evidence capture

 

This Request for Solution (RFS) is open to vendors offering scalable, trustworthy, and forward-thinking approaches to vendor oversight. Below are targeted dates:

  • RFS Vendor Issue Date: week of December 15, 2025
  • Submissions Due: January 9, 2026, by 4 PM CT
  • Finalist Presentations: January 22 or 23, 2026

 

Prospective Vendor Submission Form

Please fill out the form below to be added as potential vendor for future upcoming sourcing opportunities.

Capability Statement

 

Governance and Control Assurance Program

To obtain a copy of FHLBank Chicago’s Governance and Control Assurance Program document, please complete the form on our Governance page

Vendor Issues

Reporting Illegal/Unethical Activities

To communicate concerns about possible unethical or illegal activities, please email: vendormanagement@fhlbc.com.