CJIS Security Policy Resources

This page provides a library of examples of certain policies required by the CJIS Security Policy. Many of these resources apply to both Criminal Justice Agencies (CJAs) and Non-Criminal Justice Agencies (NCJAs), as well as any vendors/private contractors who support them.

​Essential Policy Links

  •  (required for contractors of non-criminal justice agencies who have access to CHRI)

Interagency Agreements

CJIS Security Addendum

Examples of Required Policies

Considerations for CJIS Data and Cloud Computing

Personnel Security Requirements

External Links

  • (needed to demonstrate compliant encryption of CJI)
  • Vendor Management Program (a program that consolidates the background check process for criminal justice vendors)
  • (a free utility providing the required Security Awareness Training for those with access to CJI/CHRI)