Information Security

Information Security Training: CISO Releases CyberSafe at USPS and Payment Card Industry Information Security Courses

As a part of the 2016 Strategic Training Initiative (STI), the Corporate Information Security Office (CISO) has released two CyberSafe at USPS training courses in the Learning Management System (LMS) and encourages employees to enroll. The course objectives are to educate learners on information and cyber security leading practices.

n CyberSafe 101: Passwords & Phishing (LMS course number 10024251) is a 15-minute web-based training course required annually for all employees with active ACE user IDs. The course has been re-released to present basic tips to employees about creating strong passwords and avoiding phishing traps.

n CyberSafe 201: Data Protection (LMS course number 10023852) is a 15-minute web-based training course required for employees with active ACE user IDs who handle sensitive information. The course is new and offers guidelines for keeping sensitive information secure.

In addition to CyberSafe at USPS courses, CISO has also re-released LMS training courses for employees who handle Payment Card Industry (PCI) information. Some employees may be required to take a combination of PCI training courses depending on their role and system access:

n Employees who perform credit⁄debit card transactions at any time must complete Protecting Payment Cardholder Data (LMS course number 10022027) before March 31, 2016.

n Clerks and supervisors who process credit and debit card transactions must complete Protecting Payment Information — Back Office Training (LMS course number 10023203) before March 31, 2016.

n PCI application developers must complete OWASP Top 10 (LMS course number 10021914) before August 31, 2016.

n PCI system, database, and network administrators must complete PCI Administrator Security Awareness (LMS course number 10024851) before August 31, 2016.

Online security is a priority for everyone. CyberSafe at USPS offers additional instructional resources online for staying secure at work and at home: http:⁄⁄⁄cyber⁄.

Postal Service employees, customers, and suppliers seeking more guidance on information security are also encouraged to visit the Department of Homeland Security (DHS) website: http:⁄⁄⁄stopthinkconnect-toolkit.

To report information security incidents, email or call 866-877-7247.