Transport and session security

Browser sessions should use modern TLS configurations. Customers should enforce workstation controls and phishing-resistant authentication where policy requires it.

Operational monitoring

Monitoring should cover authentication anomalies, interface queue health, and privileged actions inside the LIS.