Laserfiche WebLink
The CSO will coordinate the assignment of new ORI numbers, the change in ORI location or <br /> address, and any other changes, cancellations, or retirements of ORIs accessing <br /> WACIC/NCIC. The assignment of an ORI to an agency is not a guarantee of access to the <br /> state and federal systems. The CSA makes the final determination of who may access <br /> WACIC/NCIC based on the standards provided by the CJIS Security Policy and <br /> determination of an agency's administration of criminal justice. Any requests for additional <br /> ORIs by an agency will be forwarded to the ACCESS Section, who will conduct a short audit <br /> of the agency to verify compliance standards are being met. See ACCESS Operations <br /> Manual Introduction for more information. <br /> III. Indemnification <br /> Each agency(party) shall defend, protect, and hold harmless the other agency(party) from <br /> and against all claims, suits and/or actions arising from any negliglent or intentional act or <br /> omission of that party's employees, agents, and/or authorized subcontractor(s) while <br /> performing under this agreement. <br /> IV. Administrative Responsibilities <br /> The agency shall respond to requests for information by the FBI CJIS Division or ACCESS <br /> in the form of questionnaires, surveys, or similar methods, to the maximum extent possible, <br /> consistent with any fiscal, time, or personnel constraints of that agency. <br /> All agencies are required to have formalized written procedures for the following, if <br /> applicable: validations, hit confirmation, criminal history use and dissemination, ACCESS <br /> misuse, record entry (for all record types entered into WACIC and NCIC), rebackground <br /> investigations, password management, disposal of media, physical protection, NICS appeal <br /> process, and a network drawing. <br /> The CSO provides system training to agencies accessing WACIC/NCIC through the state <br /> computer system. If employees are using inquiry only functions, they must attend Level 1 <br /> certification training. Employees entering information into the WACIC/NCIC system must <br /> attend Level 2 certification training. All certifications must be aquired within six months of <br /> hire date and renewed biennially. All staff who manage ACCESS users and are not <br /> ACCESS certified must view the Upper Management and Administrators Overview Training <br /> online and sign the signature log, which must be kept at the agency for review during the <br /> triennial ACCESS audit. <br /> Security awareness training is required within six months of initial assignment, and biennially <br /> thereafter, for all personnel (who are not ACCESS certified) that have unescorted access to <br /> Criminal Justice Information (CJI). This includes agency employees, custodial staff, <br /> Information Technology (IT) staff, upper management, etc. Records of individual basic <br /> security awareness training shall be documented, kept current, and maintained by each <br /> agency for review during the triennial ACCESS or Technical Security audit. <br /> A Terminal Agency Coordinator(TAC) must be assigned for each terminal agency. This <br /> person is the Point Of Contact (POC) for the agency. A TAC must maintain a Level 2 <br /> ACCESS certification. The TAC retains the responsibility of ensuring his/her agency is in <br /> compliance with state and FBI CJIS Division policies and regulations. A TAC must attend <br /> TAC training once during the triennial audit cycle. <br /> For those agencies providing ACCESS services through regional computer systems to <br /> outside agencies, the TAC shall be responsible for the dissemination of all administrative <br /> messages received on the 24 hour printer to those agencies. <br /> 2017 WSP ACCESS User Acknowledgement <br /> 2 <br />