SKIP TO PAGE CONTENT

RA-2 Security Categorization

Last Review: 10/1/22

Statement

To properly assess the risk of each information system the type of data and system criticality of each system shall be identified and documented. 

Applicability

This Control applies to all West Texas A&M network information resources. The intended audience for this Control includes all information resource owners, custodians, and users of information resources.

Implementation

WTAMU categorizes information and the information systems owned or managed by the University using a data classification structure that incorporates the guidance provided in the Texas A&M University System Data Classification Standard, at a minimum:

  • Categorizes information and the information system in accordance with applicable federal laws, executive orders, directives, policies, regulations, standards, and guidance
  • Documents the security categorization results (including supporting rationale) in the security plan for the information system
  • Ensures that the authorizing official or authorizing official designated representative reviews and approves the security categorization decision.

Phone
Twitter
Facebook
Instagram
Mail