Audit Reports

R - 1 -- Provide system administrators access to current hardening standards policies.

R - 2 -- Conduct a thorough review of vendor recommendations for patching and Postal Service standards for configuration to ensure appropriate measures are taken to correct the significant number of identified vulnerabilities.

R - 3 -- Develop a technical refresh plan for the engineering infrastructure that addresses obsolete Windows operating systems.

R - 4 -- Configure and patch operating systems according to Handbook AS-805, Information Security, requirements.

R - 5 -- Review information system configurations in accordance with policy to ensure information systems remain configured according to security standards.

R - 6 -- Configure and patch all database servers to ensure compliance with appropriate hardening standards for their configuration.

R - 7 -- Determine the minimum privileges necessary for the Biohazard Detection Servers anonymous Internet guest account to function and configure the guest account accordingly.

R - 8 -- Ensure all personnel with access to Postal Service resources receive annual security awareness training or provide a waiver for all personnel considered exempt from training.