Security Assessment of a U.S. Postal Service Product Solutions Application

Audit Reports

Image

Dec

2023

Report Number:

22-197-R24

Report Type:

Audit Reports

Category: Technology, Security

Security Assessment of a U.S. Postal Service Product Solutions Application

View PDF

Background

The U.S. Postal Service continuously strives to become more efficient and responsive to the dynamic market needs of its customers. This requires USPS to ensure its business-critical applications are secure.

What We Did

Our objective of this audit was to evaluate whether the Postal Service had security controls in place to protect one such application from cyberattacks, prevent unauthorized access to restricted data, and determine compliance with secure coding practices. We conducted a security assessment of the application, including penetration tests, to evaluate the application and internal security posture. We also performed a source code review to verify if appropriate security controls were present.

Report Recommendations

#	Recommendation	Status	Value	Initial Management Response
1	Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act.	Open	$0	Agree
2	Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act.	Closed	$0	Agree
3	Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act.	Closed	$0	Agree
4	Some or all of the recommendation is not publicly available due to concerns with information protected under the Freedom of Information Act.	Open	$0	Agree

Breadcrumb

Audit Reports

Security Assessment of a U.S. Postal Service Product Solutions Application

Report Recommendations