Description

The University is responsible for establishing and promoting a suitable and relevant threat awareness program to enhance awareness of University information security policies and procedures.

Applicability

  • Texas Administrative Code Chapter202 assigns responsibility for the protection of information resources to the President of the University. For the purposes of this Control, the authority and responsibility regarding the university‚Äôs compliance with TAC 202 have been delegated by the President to the Chief Information Officer (CIO).

Implementation

  • 1

    The CIO or designee shall implement a threat awareness program that includes:

    • 1.1

      A University wide information sharing capability;

    • 1.2

      Administering an ongoing information security awareness education program for all users; and

    • 1.3

      Introducing information security awareness and informing new employees of information security policies and procedures during the onboarding process.