FBI CJI data is sensitive information and security shall be afforded to prevent any unauthorized access,
use or dissemination of the data. - Answers True
FBI CJI data must be safeguarded to prevent: - Answers All of the Above
Unauthorized requests, receipts, release, interception, dissemination or discussion of FBI CJI data
could result in criminal prosecution and/or termination of employment. - Answers True
A security incident shall be reported to the CJIS Systems Agency's (CSA's) Information Security Officer
(ISO) and include the following information: date of the incident, location(s) of incident, systems
affected, method of detection, nature of the incident, description of the incident, actions
taken/resolution, date and contact information for the agency. - Answers True
Training for appropriate personnel would include people who read criminal histories but do not have
a NCIC workstation of their own. - Answers True
A security incident is a violation or attempted violation of the FBI CJIS Security Policy or other security
policy that would threaten the confidentiality, integrity or availability of FBI or State CJI data. -
Answers True
FBI CJI data is any data derived from the national CJIS Division Systems. - Answers True
Electronic media includes, but is not limited to: - Answers All of the Above
According to many security experts, which group constitutes the biggest threat: - Answers The
agency's own personal
Users do not need to log off of the software/system at the end of the shift or when another operator
wants to use the software/system. - Answers False
Training for appropriate personnel would include vendors who develop software for NCIC access. -
Answers True
You should never email Criminal Justice Information (CJI) unless your agency's email system meets all
the requirements outlined in latest CJIS Security policy. - Answers True
__________ is sensitive data and unauthorized use could result in criminal prosecution or termination
of employment. - Answers CHRI
Sometimes you may only see indicators of a security incident. - Answers True
Custodial workers that access the terminal area must have a fingerprint background check done and
training unless they are escorted in these areas. - Answers True
Criminal History Record Information (CHRI) includes: - Answers All of the above
All persons who have access to CJI are required to have security training within ___ months of
assignment. - Answers 6
The CJIS Security Policy outlines the minimum requirements. Each criminal justice agency is
encouraged to develop internal security training that defines local and agency specific policies and
procedures. - Answers True
Information obtained from the III is not considered CHRI. - Answers False
Social Engineering is an attack based on deceiving users or administrators at the target site. - Answers
True
The state CJIS Systems Agency (CSA) is responsible for compliance with the FBI CJIS security policy. -
Answers True
Criminal justice purposes (also known as the administration of criminal justice) include: detection,
apprehension, detention, pretrial release, post-trial release, prosecution, adjudication, correctional
supervision, or rehabilitation of accused persons or criminal offenders. - Answers True
Each agency accessing FBI CJI data should have a written policy describing the actions to be taken in
the event of a security incident. - Answers True
Training records must be kept current by the State, Federal or Local Agency Officer. - Answers True
Access to and use of FBI CJI is only for: - Answers Criminal justice or authorized civil purposes only.