What should be done immediately upon discovering a violation of the CJIS security policy?

Upon discovering a violation of the CJIS security policy, the appropriate immediate action is to notify the local agency security officer or terminal agency coordinator. This step is critical because these individuals are designated to manage security protocols and violations within their agency. They can evaluate the situation promptly, take necessary actions, and initiate any required reporting processes.

The local agency security officer or terminal agency coordinator has the expertise and responsibility to handle such violations according to established protocols, ensuring that proper measures are taken to mitigate any potential risks stemming from the breach. This could involve assessing the extent of the violation, coordinating with law enforcement if necessary, and implementing security measures to prevent future occurrences.

Other possible actions, such as contacting the FBI or sending an email to the agency director, may be appropriate later in the process, but the immediate priority is to alert the designated personnel who can effectively respond to the violation. Filling out a violation report form is also important, but it typically comes after the initial notification to ensure that the agency can address the issue swiftly and appropriately.