Get Started
GRC Assessment Software for TAC 202
Enable compliance with Texas regulations
Streamline TAC 202 risk assessments by working together in one place. Isora makes it easier for Texas state agencies and higher education institutions to manage information security.
Request a Demo Chat with Sales
Trusted by established public organizations
Simplify compliance oversight

Easily invite auditors to Isora to share risk assessments, reports and more

Increase situational awareness

Track where private data is stored, who has access, and how it’s handled in a comprehensive inventory

Be more resilient and responsive

Engage and educate people across your organization to handle information securely

Examine security practices at scale
Get started with questionnaires based on NIST 800-53 and Texas DIR security standards. Customize them as needed and automate campaigns to save time and resources.
Request a Demo
  • NIST 800-171, NIST CSF, HECVAT, and more
  • Evidence management
  • User delegation
Increase awareness with a complete inventory
Manage the devices, applications and people that handle sensitive information. Send questionnaires to assess security practices in Isora.
Request a Demo
  • Permission and ownership tracking
  • Deployment tracking
  • Data classification tracking
Reports & Risk Register
Manage risk with a data-driven approach
Identify and analyze any security gaps from detailed reports. Using scorecards, people can make the best decisions to address risks, together.
Request a Demo
  • Risk summary reports
  • CSV & PDF exports
  • Risk ownership tracking
Isora transforms our approach to information security risk management, enabling our team to have meaningful conversations with people across disciplines, driving security improvements and a culture of risk awareness. It's been a game-changer for us.

Cam Beasley, Chief Information Security Officer

The University of Texas at Austin
Our latest content
Stay ahead of the curve with guides and articles from our research team on a diverse range of topics exploring the ever-changing world of GRC

This guide covers everything you need to know about TAC 202, including what it entails, why it's important, and how you can comply. We even included a TAC 202 checklist to make it easy for your organization to get started.

Frequently Asked Questions
How can we help?
Find the answers you need here, or chat with us.
Ask a Question
What is TAC 202?

TAC 202, found in Title 1, Part 10, Chapter 202 of the Texas Administrative Code, sets cybersecurity standards for all Texas state agencies and institutions of higher education. The regulation requires these entities to develop comprehensive information security programs that assess risks, manage data access, respond to incidents, and monitor security protocols. TAC 202’s primary goal is to protect the confidentiality, integrity, and availability of information resources, ensuring a consistent security strategy across the state.

How can a GRC Assessment Platform help with the TAC 202?

A GRC Assessment Platform like Isora provides robust tools that enable state agencies and higher education institutions to establish comprehensive information security risk management programs in line with TAC 202. With Isora, teams can create an extensive inventory that includes IT assets, applications, third-party vendors, organizational units, and personnel. The platform supports the execution of collaborative risk self-assessments on these entities, aligning with TAC 202’s mandates and integrating security frameworks like NIST 800-53. This approach not only helps in identifying and addressing vulnerabilities but also ensures that all aspects of information security are scrutinized and managed in accordance with the established standards and best practices.

Get Started
Manage assessments
confidently with
collaborative GRC tooling