Transport and session security
Browser sessions should use modern TLS configurations. Customers should enforce workstation controls and phishing-resistant authentication where policy requires it.
Operational monitoring
Monitoring should cover authentication anomalies, interface queue health, and privileged actions inside the LIS.