|By Gerry Grealish||
|June 28, 2013 09:45 AM EDT||
As with other industries, the daily operations of law enforcement and criminal justice organizations rely heavily on obtaining, holding and sharing sensitive data. The FBI's Criminal Justice Information System (CJIS) is responsible for providing many critical pieces of data that criminal justice organizations and contractors need to conduct business every day - including fingerprint records, sex offender registries and criminal histories.
There are understandably strict regulations and standards for anyone accessing CJIS data and this applies to any cloud application provider or vendor providing products or services related to this data.
New Standards on CJIS Data & Maintaining Compliance
The FBI, collectively with other law enforcement officials, published new CJIS standards in order to address how CJIS information is accessed and shared across the country and world. By September 2014 (the extended date), all organizations that access the CJIS database must institute specific standards, including what the FBI calls "Advanced Authentication," which specifically entails the need for multiple security measures for anyone accessing or administrating CJIS data, even network administrators. Another requirement is to ensure any data moved outside of a secure facility is properly protected at all times.
While the requirements and process to be compliant may seem daunting, there are solutions available now that can properly encrypt sensitive data and bring vendors into compliance with the CJIS policy. One solution to consider is a Cloud Encryption and Tokenization Gateway, which intercepts sensitive data while it is still on-premise, encrypts or replaces it with a random token and protects the data whether at rest, in transit or on the cloud. As the proliferation of the cloud continues, more stringent regulations surrounding sensitive data held in databases and systems such as the CJIS can be expected. Cloud Encryption and Tokenization Gateways are a viable solution to help organizations stay compliant.
PerspecSys Inc. is a leading provider of cloud protection and cloud encryption solutions that enable mission-critical cloud applications to be adopted throughout the enterprise. Cloud security companies like PerspecSys remove the technical, legal and financial risks of placing sensitive company data in the cloud. PerspecSys accomplishes this for many large, heavily regulated companies across the world by never allowing sensitive data to leave a customer's network, while maintaining the functionality of cloud applications. For more information please visit http://www.perspecsys.com/ or follow on Twitter @perspecsys.
Oct. 1, 2016 04:30 PM EDT Reads: 1,317
Oct. 1, 2016 04:30 PM EDT Reads: 359
Oct. 1, 2016 04:00 PM EDT Reads: 3,729
Oct. 1, 2016 03:45 PM EDT Reads: 606
Oct. 1, 2016 03:30 PM EDT Reads: 1,198
Oct. 1, 2016 03:30 PM EDT Reads: 1,764
Oct. 1, 2016 03:15 PM EDT Reads: 2,518
Oct. 1, 2016 03:00 PM EDT Reads: 3,067
Oct. 1, 2016 01:30 PM EDT Reads: 870
Oct. 1, 2016 01:00 PM EDT Reads: 5,191
Oct. 1, 2016 12:30 PM EDT Reads: 3,128
Oct. 1, 2016 12:30 PM EDT Reads: 5,550
Oct. 1, 2016 12:30 PM EDT Reads: 664
Oct. 1, 2016 12:30 PM EDT Reads: 2,341
Oct. 1, 2016 12:30 PM EDT Reads: 3,276
Oct. 1, 2016 12:30 PM EDT Reads: 655
Oct. 1, 2016 11:45 AM EDT Reads: 2,815
Oct. 1, 2016 11:30 AM EDT Reads: 1,339
Oct. 1, 2016 11:15 AM EDT Reads: 892
Oct. 1, 2016 10:45 AM EDT Reads: 653