Question: FBI CJI data is sensitive information and security shall be afforded to prevent any unauthorized access, use or dissemination of the data.

Answer: TRUE

Question: FBI CJI data must be safeguarded to prevent:

Answer: All of the Above

Question: Unauthorized requests, receipts, release, interception, dissemination or discussion of FBI CJI data could result in criminal prosecution and/or termination of employment.

Answer: TRUE

Question: A security incident shall be reported to the CJIS Systems Agency's (CSA's) Information Security Officer (ISO) and include the following information: date of the incident, location(s) of incident, systems affected, method of detection, nature of the incident, description of the incident, actions taken/resolution, date and contact information for the agency.

Answer: TRUE

Question: Training for appropriate personnel would include people who read criminal histories but do not have a NCIC workstation of their own.

Answer: TRUE

Question: A security incident is a violation or attempted violation of the FBI CJIS Security Policy or other security policy that would threaten the confidentiality, integrity or availability of FBI or State CJI data.

Answer: TRUE

Question: FBI CJI data is any data derived from the national CJIS Division Systems.

Answer: TRUE

Question: Electronic media includes, but is not limited to:

Answer: All of the Above

Question: According to many security experts, which group constitutes the biggest threat:

Answer: The agency's own personal

Question: Users do not need to log off of the software/system at the end of the shift or when another operator wants to use the software/system.

Answer: FALSE

Question: Training for appropriate personnel would include vendors who develop software for NCIC access.

Answer: TRUE

Question: You should never email Criminal Justice Information (CJI) unless your agency's email system meets all the requirements outlined in latest CJIS Security policy.

Answer: TRUE

Question: __________ is sensitive data and unauthorized use could result in criminal prosecution or termination of employment.

Answer: CHRI

Question: Sometimes you may only see indicators of a security incident.

Answer: TRUE

Question: Custodial workers that access the terminal area must have a fingerprint background check done and training unless they are escorted in these areas.

Answer: TRUE

Question: Criminal History Record Information (CHRI) includes:

Answer: All of the above

Question: All persons who have access to CJI are required to have security training within ___ months of assignment.

Answer: 6

Question: The CJIS Security Policy outlines the minimum requirements. Each criminal justice agency is encouraged to develop internal security training that defines local and agency specific policies and procedures.

Answer: TRUE

Question: Information obtained from the III is not considered CHRI.

Answer: FALSE

Question: Social Engineering is an attack based on deceiving users or administrators at the target site.

Answer: TRUE

Question: The state CJIS Systems Agency (CSA) is responsible for compliance with the FBI CJIS security policy.

Answer: TRUE

Question: Criminal justice purposes (also known as the administration of criminal justice) include: detection, apprehension, detention, pretrial release, post-trial release, prosecution, adjudication, correctional supervision, or rehabilitation of accused persons or criminal offenders.

Answer: TRUE

Question: Each agency accessing FBI CJI data should have a written policy describing the actions to be taken in the event of a security incident.

Answer: TRUE

Question: Training records must be kept current by the State, Federal or Local Agency Officer.

Answer: TRUE

Question: Access to and use of FBI CJI is only for:

Answer: Criminal justice or authorized civil purposes only.