Bureau of the Fiscal Service (Fiscal Service) management should update existing UNIX and database configuration security baseline documents to ensure that these documents fully incorporate and enforce the components of the Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIG). Management should document any deviations from the STIGs and note compensating controls that mitigate the security risk to an acceptable level.