In the context of the FBI CJIS Security Policy, a non-criminal justice agency refers to an organization or entity that is not primarily involved in the administration of criminal justice. Non-criminal justice agencies typically do not have direct law enforcement authority or responsibilities but may have a need to access or handle criminal justice information for specific purposes.
Examples of non-criminal justice agencies can include government departments or agencies, regulatory bodies, educational institutions, research organizations, private companies, or any other entity that collaborates or interacts with criminal justice agencies or handles criminal justice information in a secondary or supportive capacity.
Non-criminal justice agencies may be subject to the FBI CJIS Security Policy if they have been granted access to Criminal Justice Information (CJI) or if they are engaged in activities that require the secure handling, storage, or transmission of such information. In such cases, non-criminal justice agencies are expected to adhere to the security requirements outlined in the FBI CJIS Security Policy to protect the confidentiality, integrity, and availability of the criminal justice information they handle.
These security requirements may include measures related to access controls, authentication, data encryption, physical security, incident response, and more. Non-criminal justice agencies may need to implement appropriate security controls, establish policies and procedures, and undergo audits or assessments to demonstrate compliance with the FBI CJIS Security Policy.
We Provide a Full Life Cycle of Solutions for FBI CJIS Policy Compliance
- Gap Assessments
- Policies and Procedures Writing
- Independent CJIS Security Assessments
- CJIS Specific Continuous Monitoring Programs