| Trustmark Definition Name | Version |
|---|---|
|
Defines conformance and assessment criteria for verifying that an organization uses the ORI, and other agency identifiers as the original identifier between the requesting agency and a CSA/SIB/Channeler.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization requires that remote administrative personnel are authenticated during the session via active teleconference with the escort throughout the session.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization requires that remote administrative personnel are authenticated prior to remote access sessions via an Advanced Authentication (AA) solution.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization requires that remote administrative personnel are authenticated prior to remote access sessions via an Advanced Authentication (AA) solution.
|
1.1 |
|
Defines conformance and assessment criteria for verifying that an organization has a CJIS Systems Officer appointed by its CSA.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization has not outsourced the CSO role.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO has appointed a CSA ISO and determined the extent of their authority.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO has ensured appropriate use, enforced system discipline, and ensured CJIS operating procedures are followed.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO approves access to FBI CJIS systems.
|
1.0 |
|
This Trusmark Definition ensures that the organization's CSO ensures state/federal agency compliance with policies approved by the APB and adopted by the FBI.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO has set standards for the selection, supervision, and separation of personnel who have access to CJI.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that Terminal Agency Coordinators have been designated for those with devices accessing CJIS systems.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that Terminal Agency Coordinators have been designated for those with devices accessing CJIS systems.
|
1.1 |
|
Defines conformance and assessment criteria for verifying that Local Agency Security Officers receive enhanced security training.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that Local Agency Security Officers have been designated for those with access to CJI.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that organizations' policies state that the CSO is responsible for managing the security of CJIS systems within their state and/or agency.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO has set, maintained, and enforced appropriate policies.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's CSO supports/performs additional duties as outlined in their organization's user agreements with the FBI CJIS Division.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's network topological drawing include the organization's name and the date it was created or updated.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's network topological drawing documents all communications paths, circuits, and other components.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's network topological drawing includes the logical location of all components.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization maintains a current topological drawing depicting the interconnectivity of its network to criminal justice information, systems and services.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization's network topological drawing includes "For Official Use Only" (FOUO) markings.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization ensures that the ORI for each transaction can be traced, via audit trail, to the specific agency which is requesting the transaction.
|
1.0 |
|
Defines conformance and assessment criteria for verifying that an organization prohibit cloud providers from mining its data.
|
1.0 |
