Security Assessment of a U.S. Postal Service Product Solutions Application
Background
The U.S. Postal Service continuously strives to become more efficient and responsive to the dynamic market needs of its customers. This requires USPS to ensure its business-critical applications are secure.
What We Did
Our objective of this audit was to evaluate whether the Postal Service had security controls in place to protect one such application from cyberattacks, prevent unauthorized access to restricted data, and determine compliance with secure coding practices. We conducted a security assessment of the application, including penetration tests, to evaluate the application and internal security posture. We also performed a source code review to verify if appropriate security controls were present.