Agenda Item Request
title
Amend the Cumberland County Administrative Regulations and Policies and repeal “Number 15: CJIS Security,” and adopt “Number 15: CJIS Security Policy” to replace the former policy.
body
Requested Action or Motion
Motion to repeal “#15: CJIS Security,” in the Cumberland County Administrative Regulations & Policies and enact “#15: CJIS Security Policy” to replace the former policy in the Administrative Regulations & Policies.
Background and Purpose of Request
Staff recommend repealing the County’s current Criminal Justice Information Services (CJIS) Security Policy and replacing it with the attached proposed CJIS policy.
All agencies that handle criminal records or other information in the FBI database are required to adopt a policy outlining the agency’s security protocols to protect Criminal Justice Information (CJI). The policy must be consistent with the federal CJIS security requirements. The County’s policy is intended to cover all County departments required to comply with federal CJIS requirements, including the County’s IT Department, Sheriff’s Office, and the Cumberland County Regional Communications Center.
The FBI recently updated the federal CJIS Policy (CJIS Version 6.0) to establish stronger identity and access control measures, ongoing risk assessment and monitoring requirements and expand audit and evidence expectations, among other things. The proposed changes to the County’s policy are intended to achieve compliance with these requirements. The new structure of the proposed policy is designed to mirror the sections of the federal policy, making it easier to assess compliance with federal requirements.
Requestor
James Gailey, County Manager
Funding Amount and Source
N/A
Effective Date
Immediately
Attachments
• Draft #15: CIS Security Policy