CERT-RMM and the U.S. Postal Service (USPS)
Read how the U.S. Postal Service (USPS) uses CERT-RMM to improve the resilience of its products and services.
Abstract
Developing and implementing measurable methodologies for improving the security and resilience of a national postal sector directly contribute to protecting public and postal personnel, assets, and revenues. Such methodologies also contribute to the security and resilience of the mode of transport used to carry mail and the protection of the global mail supply chain.
Since 2011, the U.S. Postal Service (USPS) has collaborated with the CERT Division to improve the resilience of selected U.S. Postal Service (USPS) products and services. The CERT Resilience Management Model (CERT-RMM) and its companion diagnostic methods served as the foundational tool for this collaboration.
The following reports and podcast describe efforts to improve the resilience of U.S. Postal Service products and services, introduce extensions of CERT-RMM that address new mail-specific process areas for U.S. mail, and describe a method of identifying physical security gaps in international mail processing centers and similar facilities.
Collection Contents
-
Structuring the Chief Information Security Officer Organization
October 6, 2015 • Technical Note
By Julia H. Allen, Gregory Crabb (U.S. Postal Inspection Service), Pamela D. Curtis, Brendan Fitzpatrick, Nader Mehravari, David Tobar
The authors describe how they defined a CISO team structure and functions for a national organization using sources such as CISOs, policies, and lessons learned from cybersecurity incidents.
read -
A Proven Method for Meeting Export Control Objectives in Postal and Shipping Sectors
February 10, 2015 • Technical Note
By Greg Crabb (United States Postal Service), Julia H. Allen, Pamela D. Curtis, Nader Mehravari
This report describes how the CERT-RMM enabled the USPIS to implement an innovative approach for achieving complex international mail export control objectives.
read -
CERT Resilience Management Model—Mail-Specific Process Areas: International Mail Transportation (Version 1.0)
September 18, 2014 • Technical Note
By Julia H. Allen, Greg Crabb (United States Postal Service), Pamela D. Curtis, Sam Lin, Nader Mehravari, Dawn Wilkes
This report describes a new process area that ensures that international mail is transported according to Universal Postal Union standards.
read -
CERT Resilience Management Model—Mail-Specific Process Areas: Mail Induction (Version 1.0)
September 18, 2014 • Technical Note
By Julia H. Allen, Greg Crabb (United States Postal Service), Pamela D. Curtis, Nader Mehravari, David W. White
This report describes a new process area that ensures that mail is inducted into the U.S. domestic mail stream according to USPS standards and requirements.
read -
CERT Resilience Management Model—Mail-Specific Process Areas: Mail Revenue Assurance (Version 1.0)
September 18, 2014 • Technical Note
By Julia H. Allen, Greg Crabb (United States Postal Service), Pamela D. Curtis, Nader Mehravari, David W. White
This report describes a new process area that ensures that the USPS is compensated for mail that is accepted, transported, and delivered.
read -
Improving the Security and Resilience of U.S. Postal Service Mail Products and Services Using the CERT® Resilience Management Model
January 17, 2014 • Technical Note
By Greg Crabb (United States Postal Service), Julia H. Allen, Nader Mehravari, Pamela D. Curtis
In this report, the authors describe how to improve the resilience of U.S. Postal Service products and services
read -
A Proven Method for Identifying Security Gaps in International Postal and Transportation Critical Infrastructure
January 17, 2014 • Technical Note
By Greg Crabb (United States Postal Service), Julia H. Allen, Pamela D. Curtis, Nader Mehravari
In this report, the authors describe a method of identifying physical security gaps in international mail processing centers and similar facilities.
read -
U.S. Postal Inspection Service Use of the CERT Resilience Management Model
August 21, 2012 • Podcast
By Greg Crabb (U.S. Postal Inspection Service), Julia H. Allen
In this podcast, Greg Crabb explains how CERT-RMM can be used to establish and meet resilience requirements for a wide range of business objectives.
learn more -
CERT-RMM and the U.S. Postal Service (USPS)
October 10, 2014 • Collection
Read how the U.S. Postal Service (USPS) uses CERT-RMM to improve the resilience of its products and services.
view