<<Prev Rule

Texas Administrative Code

Next Rule>>
TITLE 1ADMINISTRATION
PART 10DEPARTMENT OF INFORMATION RESOURCES
CHAPTER 202INFORMATION SECURITY STANDARDS
SUBCHAPTER BINFORMATION SECURITY STANDARDS FOR STATE AGENCIES
RULE §202.27Texas Risk and Authorization Management Program for State Agencies

A state agency contracting for cloud computing services that store, process, or transmit data of the state agency shall:

  (1) confirm that vendors contracting with the state agency to provide cloud computing services for the state agency are certified through TX-RAMP prior to entering or renewing a cloud computing services contract on or after January 1, 2022; and

  (2) require a vendor contracting with the state agency to provide cloud computing services for the state agency that are subject to the state risk and authorization management program to maintain TX-RAMP compliance and certification throughout the term of the contract.


Source Note: The provisions of this §202.27 adopted to be effective November 17, 2021, 46 TexReg 7775; amended to be effective November 16, 2023, 48 TexReg 6579

Link to Texas Secretary of State Home Page | link to Texas Register home page | link to Texas Administrative Code home page | link to Open Meetings home page