SA-2: Allocation of Resources

NIST Baseline: Low

In accordance with Texas Administrative Code (TAC) §202.70, the Tarleton State University (Tarleton) CEO/President, in coordination with the Chief Information Officer (CIO) and Chief Information Security Officer (CISO), is responsible for:
- Determining information security requirements for information resources or service in the business process planning;
- Determining, documenting, and allocating the resources required to protect information resources or services as part of the capital planning and investment control process; and
- Establishing a discrete line item for information security in university programming and budgeting documentation.