Our professional lives are filled with an abundance of technology that allow us to share information and collaborate in ways we never have before. As a USPS® employee or contractor, you have a responsibility to protect sensitive information so that it doesn’t fall into the wrong hands.
Throughout the past year, the Corporate Information Security Office has shared various ways to keep email and USPS-issued smart phones and laptops cyber safe. But, did you know that virtual meetings like WebEx calls can also put you at risk? Unannounced listeners could use inside information to harm the Postal Service™. Do you know who is on the other end of your call?
Here are some tips to protect virtual meeting calls from uninvited attendees:
n Keep your conference code to yourself. Never share conference codes. Refer to section 2-2.33 of Handbook AS-805, Information Security, for security guidelines. (See about.usps.com/handbooks/as805/as805c2_034.htm).
n Ask first. Ask the meeting organizer to add an individual you would like to attend. Don’t forward an invite without permission from the meeting organizer.
n Start with roll call. Before your meeting starts, make sure you know who has dialed in. Never share sensitive information until you remove any unidentified callers.
n Target your audience. Restrict the list of attendees based on the confidentiality of the information being presented.
n Disconnect it. End WebEx sessions via the “End Meeting” button to ensure everyone has disconnected.
n Maintain careful records. If you must record the meeting, add passwords before sharing information. Delete meeting records when they are no longer needed.
For more information about protecting WebEx calls, visit cisco.com/c/dam/en/us/td/docs/collaboration/webex_centers/esp/WebEx_b_cisco-webex-best-practices-admin.pdf.
To report a cybersecurity incident, contact the CyberSafe at USPS® team by calling 866-877-7247 or sending an email to CyberSafe@usps.gov. For general cybersecurity information, visit the CyberSafe at USPS websites on Blue (blue.usps.gov/cyber/) and LiteBlue (liteblue.usps.gov/cyber/).
— Corporate Information Security Office,
Chief Information Security Officer
and Digital Solutions, 9-26-19