Click to make text smaller Click to reset text size Click to make text larger
Information Security

ISAAC - Program designed to improve the value and accuracy of departmental assessments
Information Security Awareness Training Pages
Security Incident Reporting System
Safe Computing Practices
Viewing mail header details
What To Do About SPAM E-Mail

  • Provide and maintain the Information Security Program and Function as specified in Texas Administrative Code
  • Monitor the effectiveness of security controls for mission critical or confidential information systems
  • Conduct and report annual Risk Analysis/Assessment of mission critical and confidential information systems/resources
  • Beyond the annually required ISAAC Risk Assessments, ITIM can assist your department with Risk Assessment services including the following methodologies:
    • National Institute of Standards Technology (NIST)'s ASSET
    • CSI's Facilitated Risk Assessment Process (FRAP)
    • National Security Agency's - INFOSEC Assessment Methodology (IAM)
    • Carnegie Mellon's OCTAVE (Operationally Critical Threat, Asset, and Vulnerability EvaluationSM) Security Risk Evaluation
    • Information Systems Audit and Control Association (ISACA)® CobiT
  • Promote and provide information security awareness programs
  • Manage and document physical access to CIS Machine Room (see procedure and forms here)
  • Create monthly security incident reports for Texas Dept. of Information Resources (DIR)