Press Enter to skip to the main content
Catalog Degrees Visit Apply
Give Blinn A-Z Calendars myBLINN
Blinn College For Mobile Devices
  • About
    • About
    • Administration
    • Accreditation
    • Affordability
    • Blinn A-Z
    • Board of Trustees
    • Campuses
    • Campus Maps
    • Catalog
    • Chancellor
    • Contact Blinn
    • Directory
    • Economic Impact
    • Employment Opportunities
    • Institutional Research and Effectiveness
    • Newsroom
  • Student Services
    • Student Services
    • Academic Advising
    • Activities Calendar
    • Business Office/Payment
    • Campus Safety
    • Career Services
    • Counseling Services
    • Disability Services
    • Financial Aid
    • Graduation Information
    • Housing and Residence Life (Brenham Campus)
    • Health Clinics
    • Meal Plans
    • Pregnancy and Parenting Services
    • Police and Emergency Management
    • Scholarships
    • Student Leadership/Activities
    • Title IX
    • Transcripts
    • Veteran Services
  • Future Students
    • Future Students
    • Academic Advising
    • Admissions
    • Application Steps
    • Contact a Recruiter
    • Course Registration
    • Housing and Residence Life
    • Immunization Information
    • Important Dates and Deadlines
    • International Students
    • New Student Registration
    • Placement Testing
    • Preview Day
    • Residency
    • Visit
  • Blinn College For Desktop Devices
  • Programs
    • Programs
    • Academic Affairs
    • Academic Calendar
    • Applied Technology and Workforce
    • Blinn Online
    • Catalog
    • Course Schedule
    • Dual Credit
    • Programs A-Z
    • Transfer Information
    • Instructional Leadership
  • Academic Resources
    • Academic Resources
    • Bookstore
    • Ecampus
    • Learning Center
    • Library
    • myBLINN
    • Testing Services
    • Tutoring Services
    • Writing Center
  • Community
    • Community
    • Alumni and Friends Association
    • Alumni Lettermen Association
    • Athletics
    • Blinn College Foundation
    • Box Office
    • Performing Arts Series
    • Rent Event Spaces
    • Small Business Development Center
    • Star of the Republic Museum
    • Visual and Performing Arts
  • Administrative Regulations Home
  • Recording of Class Lectures by Students
  • Quiet Hours and No Loitering
  • Purchasing
  • Procurement Card (P-Card)
  • Printing Guidelines
  • Payment of Medical Care Costs for Student Athletes
  • Parking and Traffic Regulations
  • Outside Employment
  • Excused Absences for Students Called To Active Military Service
  • Blinn Announcement (Mass Email) Guidelines
  • Building Access Key and Card Regulation
  • Institutional Scholarships/Pell Grant Award Coordination
  • Information Resources Acceptable Use, Security and Copyright Infringement
  • Incivility Protocol
  • Hiring Manager’s Guide For Faculty and Staff
  • Graduation
  • General Educational Development Test Administration
  • Flexible Work Schedules
  • Financial Support for Student Organizations
  • Final Course Grade Appeal
  • Faculty Workload, Teaching Load, and Office Hours
  • Faculty Professional Development
  • Unearned Tuition Assistance Funds
  • Facility Naming Rights
  • Externally Funded Grants and Contracts
  • Expulsion of Students from Class
  • Expressive Activities on Campus by Students and Employees
  • Employee Progressive Discipline
  • Employee Performance Evaluations
  • Assistance Animals - Emotional Support Animals
  • Cell Phone Allowances
  • Emergency Response Plan
  • Employee Book Voucher
  • Emergency Procedures Manual
  • Athletic Department Drug Testing
  • Drug and Alcohol Prevention Program (DAAPP)
  • Disposal of Property
  • Display Screen Guidelines
  • Discretionary Time
  • Direct Deposit, Payroll
  • Capital Asset Guidelines
  • Campus Security Authorities
  • Campus Carry
  • Information Systems and Services
  • Information Systems and Information Integrity
  • Information Systems and Communications Protection
  • Information Systems Supply Chain Risk Management
  • Information Systems Security Planning
  • Administrative Organization Plan - Councils and Committees
  • Information Systems Security Assessment and Authorization
  • Information Systems Risk Assessment
  • Prohibited Technologies and Covered Applications
  • Information Systems Media Protection
  • Information Systems Maintenance
  • Information Systems Security Program
  • Information Resources Acceptable Use, Security and Copyright Infringement
  • Information Systems Incident Response
  • Information Systems Identification and Authentication
  • Information Access Control
  • Photo Identification (ID) Card
  • Faculty Credentialing Procedures
  • Blinn Alert Notification
  • Student Code of Conduct
  • Approved Vendors for Apparel and Promotional Items
  • Alternate Work Location
  • Admission Requirements and Registration Eligibility
  • Web Accessibility
  • Board Policy/Administrative Regulations Development and Approval
  • Quarantine Leave for Certain Law Enforcement and EMS Personnel
  • Outdoor Intramural Spaces Guidelines
  • Name, Image, and Likeness
  • Indoor Tabling Guidelines
  • Hazing Prevention
  • Credit by Examination, Prior Learning Assessment, Awarding Credit
  • Additional Education During Term of Employment
  • Post Accident Drug and Alcohol Testing
  • Personal Leave
  • Prohibition Against Inducements, Commission and High-Pressure Recruitment Tactics for Service Members
  • Continuity of Operations Plans
  • Employee Complaints
  • Community Users of the Blinn College Library
  • College District Closures
  • College District Brand Guidelines
  • College Catalog Policy
  • Information Systems Physical and Environmental Protection
  • Information Systems Personnel Security
  • Information Systems Contingency Planning
  • Information Systems Configuration Management
  • Information Systems Awareness and Training
  • Information Systems Audit and Accountability
  • Awarding Incomplete Grades
  • Athletic Awards Criteria
  • Assessment of Instructional Programs and Courses
  • Board Policy CS - Information Systems
Administrative Regulations Home Recording of Class Lectures by Students Quiet Hours and No Loitering Purchasing Procurement Card (P-Card) Printing Guidelines Payment of Medical Care Costs for Student Athletes Parking and Traffic Regulations Outside Employment Excused Absences for Students Called To Active Military Service Blinn Announcement (Mass Email) Guidelines Building Access Key and Card Regulation Institutional Scholarships/Pell Grant Award Coordination Information Resources Acceptable Use, Security and Copyright Infringement Incivility Protocol Hiring Manager’s Guide For Faculty and Staff Graduation General Educational Development Test Administration Flexible Work Schedules Financial Support for Student Organizations Final Course Grade Appeal Faculty Workload, Teaching Load, and Office Hours Faculty Professional Development Unearned Tuition Assistance Funds Facility Naming Rights Externally Funded Grants and Contracts Expulsion of Students from Class Expressive Activities on Campus by Students and Employees Employee Progressive Discipline Employee Performance Evaluations Assistance Animals - Emotional Support Animals Cell Phone Allowances Emergency Response Plan Employee Book Voucher Emergency Procedures Manual Athletic Department Drug Testing Drug and Alcohol Prevention Program (DAAPP) Disposal of Property Display Screen Guidelines Discretionary Time Direct Deposit, Payroll Capital Asset Guidelines Campus Security Authorities Campus Carry Information Systems and Services Information Systems and Information Integrity Information Systems and Communications Protection Information Systems Supply Chain Risk Management Information Systems Security Planning Administrative Organization Plan - Councils and Committees Information Systems Security Assessment and Authorization Information Systems Risk Assessment Prohibited Technologies and Covered Applications Information Systems Media Protection Information Systems Maintenance Information Systems Security Program Information Resources Acceptable Use, Security and Copyright Infringement Information Systems Incident Response Information Systems Identification and Authentication Information Access Control Photo Identification (ID) Card Faculty Credentialing Procedures Blinn Alert Notification Student Code of Conduct Approved Vendors for Apparel and Promotional Items Alternate Work Location Admission Requirements and Registration Eligibility Web Accessibility Board Policy/Administrative Regulations Development and Approval Quarantine Leave for Certain Law Enforcement and EMS Personnel Outdoor Intramural Spaces Guidelines Name, Image, and Likeness Indoor Tabling Guidelines Hazing Prevention Credit by Examination, Prior Learning Assessment, Awarding Credit Additional Education During Term of Employment Post Accident Drug and Alcohol Testing Personal Leave Prohibition Against Inducements, Commission and High-Pressure Recruitment Tactics for Service Members Continuity of Operations Plans Employee Complaints Community Users of the Blinn College Library College District Closures College District Brand Guidelines College Catalog Policy Information Systems Physical and Environmental Protection Information Systems Personnel Security Information Systems Contingency Planning Information Systems Configuration Management Information Systems Awareness and Training Information Systems Audit and Accountability Awarding Incomplete Grades Athletic Awards Criteria Assessment of Instructional Programs and Courses Board Policy CS - Information Systems

Information Systems Risk Assessment

BLINN COLLEGE ADMINISTRATIVE REGULATIONS MANUAL

SUBJECT: Information Systems Risk Assessment

EFFECTIVE DATE: March 1, 2020; amended September 19, 2023

BOARD POLICY REFERENCE: CS

PURPOSE

Develop policies and procedures for risk assessment.

PROCESS

Risk Assessment Policy and Procedures (RA-01)

The College District

  1. Develops, documents, and disseminates to information owners and custodians:
    1. A risk assessment policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
    2. Procedures to facilitate the implementation of the risk assessment policy and associated risk assessment controls; and
  2. Reviews and updates the current:
    1. Risk assessment policy biennially; and
    2. Risk assessment procedures annually.

Risk Assessment Policy

Blinn College District shall perform and document risk assessments and make and document risk management decisions in compliance with 1 Texas Administrative Code §§ 202.25, 202.27. A state agency’s security risk management plan may be excepted from disclosure under Texas Government Code § 2054.077(c) or Texas Government Code § 552.139.

Security Categorization (RA-02)

The College District

  1. Categorizes information and the information system in accordance with applicable federal laws, Executive Orders, directives, policies, regulations, standards, and guidance;
  2. Documents the security categorization results (including supporting rationale) in the security plan for the information system; and
  3. Ensures that the security categorization decision is reviewed and approved by the authorizing official or authorizing official designated representative.

Risk Assessment (RA-03)

The College District

  1. Conducts an assessment of risk, including the likelihood and magnitude of harm, from the unauthorized access, use, disclosure, disruption, modification, or destruction of the information system and the information it processes, stores, or transmits;
  2. Integrate risk assessment results and risk management decisions from the organization and mission or business process perspectives with system-level risk assessments;
  3. Documents risk assessment results in risk assessment report;
  4. Reviews risk assessment results annually;
  5. Disseminates risk assessment results to CISO, information owners and owners as appropriate; and
  6. Updates the risk assessment annually or whenever there are significant changes to the information system or environment of operation (including the identification of new threats and vulnerabilities), or other conditions that may impact the security state of the system.

Supply Chain Risk Assessment (RA-03 -1)

  1. Assess supply chain risks associated with critical information system; and
  2. Update the supply chain risk assessment biennially, when there are significant changes to the relevant supply chain, or when changes to the system, environments of operation, or other conditions may necessitate a change in the supply chain.

Vulnerability Scanning (RA-05)

The College District

  1. Scans for vulnerabilities in the information system and hosted applications periodically and at least annually to confirm information systems are running the latest versions and when new vulnerabilities potentially affecting the system/applications are identified and reported;
  2. Employs vulnerability scanning tools and techniques that facilitate interoperability among tools and automate parts of the vulnerability management process by using standards for:
    1. Enumerating platforms, software flaws, and improper configurations;
    2. Formatting checklists and test procedures; and
    3. Measuring vulnerability impact;
    4. Update vulnerabilities to be scanned prior to a new scan
  3. Analyzes vulnerability scan reports and results from security control assessments;
  4. Remediates legitimate vulnerabilities in coordination with information system owners and custodians in accordance with an organizational assessment of risk; and
  5. Shares information obtained from the vulnerability scanning process and security control assessments with information system owners and custodians to help eliminate similar vulnerabilities in other information systems (i.e., systemic weaknesses or deficiencies).
    1. Affected system(s) may be isolated from the network.
  6. Establish a public reporting channel through the infosec@blinn.edu email for receiving reports of vulnerabilities in organizational systems and system components

Risk Response (RA-07)

Respond to findings from security and privacy assessments, monitoring, and audits in accordance with organizational risk tolerance.

PROGRAMS
VISIT
APPLY

The Blinn College District is accredited by the Southern Association of Colleges and Schools Commission on Colleges (SACSCOC) to award associate degrees. The Blinn College District also may offer credentials such as certificates and diplomas at approved degree levels. Questions about the accreditation of the Blinn College District may be directed in writing to the Southern Association of Colleges and Schools Commission on Colleges at 1866 Southern Lane, Decatur, GA 30033-4097, by calling (404) 679-4500, or by using information available on SACSCOC's website (www.sacscoc.org).

The Blinn College District does not discriminate on the basis of race, color, national origin, sex, or disability. For information regarding Title IX, ADA, Section 504, and other anti-discrimination coordinators, see the Student Title IX page.

quick links
  • A to Z Index
  • About Blinn College
  • Academic Calendar
  • Blinn Bookstores
  • Campus Maps
  • Choose your Campus
  • Contact Us
  • Directory
  • Employment Opportunities
  • Giving to Blinn
  • Library
  • myBLINN login
  • Social Media
resources
  • Access Syllabi & CVs
  • Curriculum Committee
  • Expressive Activity on Campus
  • Financial Transparency
  • House Bill 2504
  • Mental Health Counseling
  • Online Institutional Resumes
  • Open Records
  • Required Notices
  • State Auditor's Office Fraud, Waste, or Abuse Hotline
  • Student Complaint Forms
  • Student Consumer Information
  • Student Rights and Responsibilities
  • Student Title IX
  • Web Accessibility Statement
safety & security
  • Annual Security Report
  • Blinn Alert
  • Emergency Management
  • Police
  • Privacy Notice
  • Safety & Risk Management

departments
  • Accounting Department
  • Facilities, Planning, and Construction
  • Human Resources
  • Communications, Media Relations, and Marketing
  • Purchasing Department
Administration
  • Administration
  • Board of Trustees
  • Academic Committees
  • Administrative Regulations
  • Advisory Committees
  • Institutional Review Board
  • Legislative Matters
  • Office of Institutional Research and Effectiveness
  • Office of the Chancellor
  • Office of the Executive Vice Chancellor and General Counsel
  • Quality Enhancement Plan
  • Strategic Plan

©2026 Blinn College District | 902 College Avenue | Brenham, TX 77833 | 979-830-4000

Broken Aria Reference