search menu icon-carat-right cmu-wordmark

CERT-RMM and the U.S. Postal Service (USPS)

Read how the U.S. Postal Service (USPS) uses CERT-RMM to improve the resilience of its products and services.

Developing and implementing measurable methodologies for improving the security and resilience of a national postal sector directly contribute to protecting public and postal personnel, assets, and revenues. Such methodologies also contribute to the security and resilience of the mode of transport used to carry mail and the protection of the global mail supply chain.

Since 2011, the U.S. Postal Service (USPS) has collaborated with the CERT Division to improve the resilience of selected U.S. Postal Service (USPS) products and services. The CERT Resilience Management Model (CERT-RMM) and its companion diagnostic methods served as the foundational tool for this collaboration.

The following reports and podcast describe efforts to improve the resilience of U.S. Postal Service products and services, introduce extensions of CERT-RMM that address new mail-specific process areas for U.S. mail, and describe a method of identifying physical security gaps in international mail processing centers and similar facilities.

Structuring the Chief Information Security Officer Organization

October 2015

The authors describe how they defined a CISO team structure and functions for a national organization using sources such as CISOs, policies, and lessons learned from cybersecurity incidents.

A Proven Method for Meeting Export Control Objectives in Postal and Shipping Sectors

February 2015

This report describes how the CERT-RMM enabled the USPIS to implement an innovative approach for achieving complex international mail export control objectives.

CERT Resilience Management Model—Mail-Specific Process Areas: International Mail Transportation (Version 1.0)

September 2014

This report describes a new process area that ensures that international mail is transported according to Universal Postal Union standards.

CERT Resilience Management Model—Mail-Specific Process Areas: Mail Induction (Version 1.0)

September 2014

This report describes a new process area that ensures that mail is inducted into the U.S. domestic mail stream according to USPS standards and requirements.

CERT Resilience Management Model—Mail-Specific Process Areas: Mail Revenue Assurance (Version 1.0)

September 2014

This report describes a new process area that ensures that the USPS is compensated for mail that is accepted, transported, and delivered.

Improving the Security and Resilience of U.S. Postal Service Mail Products and Services Using the CERT® Resilience Management Model

January 2014

In this report, the authors describe how to improve the resilience of U.S. Postal Service products and services

A Proven Method for Identifying Security Gaps in International Postal and Transportation Critical Infrastructure

January 2014

In this report, the authors describe a method of identifying physical security gaps in international mail processing centers and similar facilities.

U.S. Postal Inspection Service Use of the CERT Resilience Management Model

August 2012

In this podcast, Greg Crabb explains how CERT-RMM can be used to establish and meet resilience requirements for a wide range of business objectives.

CERT-RMM and the U.S. Postal Service (USPS)

October 2014

Read how the U.S. Postal Service (USPS) uses CERT-RMM to improve the resilience of its products and services.