Information Security

What is the Corporate Information Security Office?

In today’s digital landscape, cybersecurity threats are everywhere. For this reason, it is increasingly important for organizations to actively communicate with employees and train them to identify and report potential threats to information security. To support these efforts, USPS® created the Corporate Information Security Office (CISO), which is responsible for ensuring information resources operate in a secure and trusted environment. But just what does CISO do?

CISO, led by Acting Chief Information Security Officer and Digital Solutions Vice President Gregory Crabb, works to develop high level strategy to combat cyber threats ranging from malicious emails to monitoring sensitive information. CISO provides the Postal Service™ community with the resources and tools they need to securely and safely store, use, and share information.

Just how effective is CISO at protecting the Postal Service from cyber threats? CISO’s efforts have helped prevent the following threats* each month:

n 257+ billion unauthorized attempts to access the USPS network.

n 66,734 attempts to distribute credit card information.

n 345,342 attempts to disseminate Social Security numbers.

n 1,278 attempts to expose USPS-issued credit card transactions.

* Data sourced from https://about.usps.com/postal-bulletin/2013/pb22360/html/info_005.htm.

CISO works year round to ensure every facet of the Postal Service is resilient and ready to combat cyber attacks. Although Postal Service employees do not report cyber incidents to CISO — they report these incidents to the CyberSecurity Operations Center (CSOC) — all employees should understand the structure and importance of CISO to the Postal Service.

When the time comes to report a suspected information security threat, please alert CSOC by emailing CyberSafe@usps.gov. For additional information on CISO or to access more information on reporting suspected threats, check out the new public-facing CyberSafe at USPS™ website at www.usps.com/cybersafe or the CyberSafe at USPS pages on Blue (https://blue.usps.gov/cyber/) and LiteBlue (https://liteblue.usps.gov/cyber/).