CJIS information is sensitive, sometimes confidential information that is housed inside of law enforcement networks. Whether it's criminal histories, criminal intelligence, investigative case files, these are all things that must be protected. This is why the CJIS policy was created by the federal government.
The FBI CJIS Security Policy is the regulatory policy for CJIS compliance. Each year or so it is updated to ensure the highest information security standards. It covers a multitude of topics such as; CJIS fingerprinting, audits, data security, password requirements, encryption,, and CJIS Level 4 testing.
CJIS Online is a web portal that agencies can use to set up and administer CJIS certifications for department members and vendor employees. This is the CJIS portal you can issue CJIS Level 4 certifications. CJIS Level 4 is for information system professionals that have logical un-escorted access to CJIS Information Systems. This would be for your IT staff, or vendors that have the same access to your network.
CJIS security awareness training (or cybersecurity awareness training) is CRITICAL in making sure your CJIS systems and network are protected. Since these systems store critical and sensitive data, you must ensure your agency personnel understand the cyber risk and attack methods being used to compromise CJIS systems.
Besides assigning staff members and vendors CJIS Level 4 certifications, there is no such thing as CJIS certified. Many companies seek out a overall CJIS certification for their software or products, however, this does not exist. Each product has to meet the CJIS standards at which time you must be approved through each states regulatory agency (such as FDLE- Florida Department of Law Enforcement). Your system then will be able to operate inside the CJIS network.
When speaking of CJIS compliance this is associated with agencies policies, procedures, and meeting the FBI CJIS Security Policy. Once every three years, law enforcement agencies around the county have to go through a CJIS audit. This audit measures the agencies compliance with the CJIS policy and points out any areas of non-compliance. These audits are challenging, and making sure you gain CJIS compliance after you fix your audit issues is crucial.
At CyberTech Analytics we offer CJIS pre and post audit support. Our staff has numerous years of both law enforcement and cybersecurity experience and are experts in FBI CJIS on site audits. We know the manpower hours that go into these CJIS compliance audits and we are here to help. We also offer sole source CJIS virtual CISO services to ensure your CJIS information services are protected. We know the issues small and mid size police departments face when it comes to IT security staffing. Our CJIS virtual CISOs provide guidance and remediation measures towards ensuring your CJIS compliance. We promise you will not find these sole source services through any other cybersecurity company. Contact us for more information!
An antivirus, incident detection/prevention system, FIPS 140-2 certified VPN, and full disk encryption are the 4 mandatory software requirements CJIS entities must meet. At CyberTech Analytics we have done all the research to make sure the products we offer will ensure you are CJIS compliant. We also know our partner products reflect on us, so we only partner with high quality software providers. Check out our "Solutions" tab for all our products we offer.
CyberTech Analytics provides support to private companies and vendors to make sure their services and products are meeting all FBI CJIS requirements. There may not be a "CJIS certification", but we can ensure your staff and products meet the requirements to be CJIS compliant. This will give your company an advantage when it comes to nationwide law enforcement bids and contracts.
CyberTech Analytics is a SOLE-SOURCE company when it comes to CJIS Information System Compliance and CJIS audits. Because of our unique experience and combination of CJIS certifications we are able to offer services no other company can match. If you need help with CJIS compliance or CJIS vCISO services, please do not hesitate to contact us!
CJIS Compliance Checklist
The FBI Security Policy includes over 200 pages of the best IT security measures to take to protect your network security. Being CJIS compliant is a difficult task especially if you do not have the expertise or resources. CyberTech Analytics has years of CJIS compliance experience and can make sure your organization meets these requirements. We offer pre and post CJIS audit support.