Are Information Technology personnel with access to FBI CJIS systems required to be fingerprinted for identification verification?

In the context of the FBI's Criminal Justice Information Services (CJIS) security policy, Information Technology personnel who have access to CJIS systems are not explicitly required to be fingerprinted for identification verification if they belong to an organization that meets certain security criteria and protocols. Instead, the policy allows for various methods of identity verification, which may not include fingerprinting for all individuals depending on their role and the organization's compliance with the necessary security measures.

It is important to understand the requirements set forth by the CJIS security policy; this policy does not universally mandate fingerprinting for all IT personnel with access. Organizations can implement other vetting processes as long as they ensure adequate protection of criminal justice information.

This nuanced approach allows for flexibility in how different organizations ensure the security of sensitive data while complying with the necessary standards set by CJIS guidelines. For individuals or entities deemed external vendors or with specific background concerns, additional scrutiny may be warranted, but such conditions don’t establish a blanket requirement for all IT personnel.