PS-2: Position Risk Designation

NIST Baseline: Low

It is the responsibility of the information system owner or manager, in conjunction with Human Resources, to:
- Assign a risk designation to all university positions within the unit (such as a security designation in a job description);
- Establish screening criteria for individuals hired for positions; and
- Review and update position risk designations periodically.
All authorized users of university information resources shall formally acknowledge that they will comply with the security policies and procedures of Texas A&M University System (TAMUS) and/or Tarleton State University (Tarleton).