Access Control and Authentication
We review who can reach criminal justice information and how identity is verified, including multi factor requirements.
A clear read on where you stand against the FBI CJIS Security Policy, with a practical path to close the gaps before your next audit.
Request this assessmentIf your agency or your systems touch criminal justice information, the FBI CJIS Security Policy applies to you, and version 6.0 raised the bar with stronger requirements that phase in through 2027. It reaches beyond police departments to courts, corrections, and the vendors and IT teams that support them. Falling short can put your access to state and federal systems at risk. We show you exactly where you stand today and what it takes to get ready.
We review who can reach criminal justice information and how identity is verified, including multi factor requirements.
We check how criminal justice information is encrypted at rest and in transit.
We evaluate your logging and monitoring against what the policy requires.
We review background screening and access for staff and vendors who touch the data.
We assess your ability to detect, report, and respond to a security incident.
We look at system hardening and how physical and digital media are handled.
Your assessment is measured directly against the CJIS Security Policy, so the results line up with what an auditor will actually check. We work through each policy area, back every finding with evidence, and hand you a prioritized roadmap to close gaps before the deadline. Where the policy leaves room for interpretation, we flag it and recommend confirming with the state CJIS Systems Agency. This is hands on work by a practitioner with real law enforcement and security experience, not an automated scan.
Request a scoped CJIS assessment and we will map it to the policy areas that apply to you.
Request this assessment www.Barkrum.com