Contingency Planning (CP)
Purpose –
The Contingency Planning Policy and associated controls describe the requirements for written plans to minimize the effects of a disaster and either maintain or quickly resume mission-critical information technology functions.
Scope and Roles –
This policy applies to information resources owned or managed by Tarleton State University (Tarleton). The intended audience includes the Tarleton Chief Information Officer (CIO), Chief Information Security Officer (CISO), and information resource owners and custodians.
Compliance –
Contingency plans for information resources are implemented to ensure compliance with the Texas Department of Information Resources (DIR) Security Control Standards Catalog as required by Title 1 Texas Administrative Code §202.76 and Texas A&M University System (TAMUS) Regulation 29.01.03, Information Security. Information resource contingency plans are a component of the Tarleton Business Continuity Plan, which is a component of the Texas A&M University System Offices Business Continuity Plan which is required by TAMUS Regulation 34.07.02, Business Continuity Plans, and Texas Labor Code §412.054.