CERT-RMM and the U.S. Postal Service (USPS)
• Collection
Publisher
Software Engineering Institute
Abstract
Developing and implementing measurable methodologies for improving the security and resilience of a national postal sector directly contribute to protecting public and postal personnel, assets, and revenues. Such methodologies also contribute to the security and resilience of the mode of transport used to carry mail and the protection of the global mail supply chain.
Since 2011, the U.S. Postal Service (USPS) has collaborated with the CERT Division to improve the resilience of selected U.S. Postal Service (USPS) products and services. The CERT Resilience Management Model (CERT-RMM) and its companion diagnostic methods served as the foundational tool for this collaboration.
The following reports and podcast describe efforts to improve the resilience of U.S. Postal Service products and services, introduce extensions of CERT-RMM that address new mail-specific process areas for U.S. mail, and describe a method of identifying physical security gaps in international mail processing centers and similar facilities.
Collection Items
Structuring the Chief Information Security Officer Organization
• Technical Note
By Julia H. Allen, Gregory Crabb (United States Postal Service), Pamela D. Curtis, Brendan Fitzpatrick, Nader Mehravari, David Tobar
The authors describe how they defined a CISO team structure and functions for a national organization using sources such as CISOs, policies, and lessons learned from cybersecurity incidents.
Read
A Proven Method for Meeting Export Control Objectives in Postal and Shipping Sectors
• Technical Note
By Gregory Crabb (United States Postal Service), Julia H. Allen, Pamela D. Curtis, Nader Mehravari
This report describes how the CERT-RMM enabled the USPIS to implement an innovative approach for achieving complex international mail export control objectives.
Read
CERT Resilience Management Model—Mail-Specific Process Areas: International Mail Transportation (Version 1.0)
• Technical Note
By Julia H. Allen, Gregory Crabb (United States Postal Service), Pamela D. Curtis, Sam Lin, Nader Mehravari, Dawn Wilkes
This report describes a new process area that ensures that international mail is transported according to Universal Postal Union standards.
Read
CERT Resilience Management Model—Mail-Specific Process Areas: Mail Induction (Version 1.0)
• Technical Note
By Julia H. Allen, Gregory Crabb (United States Postal Service), Pamela D. Curtis, Nader Mehravari, David W. White
This report describes a new process area that ensures that mail is inducted into the U.S. domestic mail stream according to USPS standards and requirements.
Read
CERT Resilience Management Model—Mail-Specific Process Areas: Mail Revenue Assurance (Version 1.0)
• Technical Note
By Julia H. Allen, Gregory Crabb (United States Postal Service), Pamela D. Curtis, Nader Mehravari, David W. White
This report describes a new process area that ensures that the USPS is compensated for mail that is accepted, transported, and delivered.
Read
Improving the Security and Resilience of U.S. Postal Service Mail Products and Services Using the CERT® Resilience Management Model
• Technical Note
By Gregory Crabb (United States Postal Service), Julia H. Allen, Nader Mehravari, Pamela D. Curtis
In this report, the authors describe how to improve the resilience of U.S. Postal Service products and services
Read
A Proven Method for Identifying Security Gaps in International Postal and Transportation Critical Infrastructure
• Technical Note
By Gregory Crabb (United States Postal Service), Julia H. Allen, Pamela D. Curtis, Nader Mehravari
In this report, the authors describe a method of identifying physical security gaps in international mail processing centers and similar facilities.
Read
U.S. Postal Inspection Service Use of the CERT Resilience Management Model
• Podcast
By Gregory Crabb (United States Postal Service), Julia H. Allen
In this podcast, Greg Crabb explains how CERT-RMM can be used to establish and meet resilience requirements for a wide range of business objectives.
Listen
CERT-RMM and the U.S. Postal Service (USPS)
• Collection
By Software Engineering Institute
Read how the U.S. Postal Service (USPS) uses CERT-RMM to improve the resilience of its products and services.
Learn MorePart of a Collection
CERT-RMM and the U.S. Postal Service (USPS)