RA-3(1): Risk Assessment – Supply Chain Risk Assessment

NIST Baseline: Low 

DIR Required By:  07/20/2023 

Review Date:  07/31/2024 

  1. The Tarleton State University (Tarleton) Chief Information Security Officer (CISO) or their designee is responsible for assessing supply chain risks associated with Tarleton information resources, and;  
  1. Updating the supply chain risk assessment periodically, when there are significant changes to the Tarleton technology supply chains, or when changes, or other conditions may necessitate a change in the supply chain. 

References/Additional Resources

None.  See any applicable internal procedures.