Planning (PL) 

Purpose –  

The Planning Policy and associated controls describe the requirements for documenting security and privacy plans and rules of behavior for information resource users.  

---

Scope and Roles – 

This policy applies to information resources owned or managed by Tarleton. The intended audience includes the Tarleton Chief Information Officer (CIO), Chief Information Security Officer (CISO), and information resource owners and custodians. 

---

Compliance –  

Security Planning controls are implemented to ensure compliance with Title 1 Texas Administrative Code (TAC) §202.73(a), and Texas Government Code §2054.133, the Texas Department of Information Resources (DIR) Security Control Standards Catalog as required by Title 1 Texas Administrative Code §202.76, and Texas A&M University System Regulation 29.01.03, Information Security.