Common Security Gaps in Police Information Sharing Systems
During a CJIS audit at a county-wide task force, an auditor pulls the access list for a shared investigative portal. Two user accounts stand out. Both belong to officers from an agency that was decommissioned from the task force eight months ago. Neither officer has logged in since the transition yet both accounts remain active….