How many controls does FBI CJIS Security Policy have?

FBI CJIS Security Policy contains 33 controls organized across 6 domains.

Where does FBI CJIS Security Policy apply?

FBI CJIS Security Policy is applicable in United States (FBI). Organizations operating in or serving customers in this jurisdiction should evaluate its requirements.

What frameworks does FBI CJIS Security Policy map to?

FBI CJIS Security Policy has control-to-control mappings with 419 other compliance frameworks in our database. Use our compliance platform to explore these mappings interactively.

How do I get started with FBI CJIS Security Policy compliance?

Start by understanding the framework's key controls and domains. Our compliance platform provides AI-powered gap analysis and mapping tools to help you assess your current posture and build a remediation plan.

FBI CJIS Security Policy

The FBI Criminal Justice Information Services (CJIS) Security Policy establishes minimum security requirements for access to FBI CJIS Division systems and information including the National Crime Information Center (NCIC), Interstate Identification Index (III), and National Instant Criminal Background Check System (NICS). Version 5.9.4 (2024) applies to all entities accessing criminal justice information (CJI) including law enforcement, contractors, and cloud service providers..

Domains

Risk and Supply Chain

Physical and Environmental Security

Monitoring and Response

System Security

Access Control and Authentication

Frequently Asked Questions

Map FBI CJIS Security Policy to any other framework

Use our AI-powered compliance platform to find control overlaps, gaps, and build remediation plans in seconds.

Try Free on Compliance Platform