Description

To properly assess risk for the University, information resource assets shall be clearly identified and inventoried.

Applicability

  • The authority and responsibility regarding the university‚Äôs compliance with Texas Administrative Code, Chapter 202 have been delegated by the President to the Chief Information Officer (CIO).

Implementation

  • 1

    It is the responsibility of the Chief Information Officer (CIO) or designee to develop and maintain an inventory of university information resources.

  • 2

    It is the responsibility of Information resource owners or designee to develop and maintain an inventory of information resources under their control. This inventory shall be provided to the CIO through the annual information security risk assessment (see Control RA-3)