The DPP is the media industry's international business change network.

DPP News

Time to Take Security Seriously

Cyber security and the threat of cyber attacks has become a hot topic in the media industry right now, with many companies realising just how vulnerable they are. The recent high profile attacks are making that all the more apparent and most media companies are looking into ways to make their data much more secure.

SECURE STORAGE

As demands for more and more bandwidth have led to a need for increased storage, many storage systems are legacy platforms piled on top of one another. These systems are simply not secure enough to tackle sophisticated attacks.

Legacy software was not developed to store such large amounts of data, and the cloud can be difficult to understand, and even more so to trust. Furthermore, working with so many third parties opens media companies up to widespread transference of content and information that makes them vulnerable. In fact, with so many systems in place to make sure that content is as personalised as possible, and can be delivered at lightning speed, it is more than easy to understand how there can be weak spots in a company’s security.

Of course, media content is extremely high profile, making media companies all the more concerned about keeping that content as safe as can be managed.

HOW TO BUILD A FORTRESS

Making your systems secure is not as difficult as it may seem though. We recommend you follow these steps:

  • Avoid single points of failure!
    • Having access to large swathes of data from a single PC/login. This is a major security hole.
    • Can the same PC access your backup/replicated copy as the original copy? If so, this is another security hole.
  • Many hacks / malicious actions come from within the organisation. How safe are your assets from internal theft? Is it wise to give a single person all the keys or should some assets be kept under a different roof? Can you audit who read/deleted/modified assets?
  • Education education education. Start from the top. Does the CTO know how to handle a DNS attack? Are the top architects really up to date in their knowledge? Then work through to the staff. Are they keeping their passwords safely? Will they report suspicious activity?
  • Make a written digital content governance strategy. Think about your backup, disaster recovery and replication strategies with the hackers in mind, then get the policies written down and adhered to across the organisation. The hackers will compromise a PC at some-point. What could a determined hacker do from there?
  • Think about keeping data safe in purpose built storage. Exposing everything via a filesystem is extremely dangerous. Consider on-premises object storage for this. Get into the mind of the hacker when forming your digital content governance strategy.

However, we aren’t saying that the companies that have experienced hacks were at fault. The harsh truth is that, even after taking these steps to ensure that your content is as safe as it can possibly be, that doesn’t mean it is 100% safe.

TIME TO TAKE SECURITY SERIOUSLY

One big thing that most companies don’t consider is the fact that cyber criminals may very well be able to break in and steal your content, but it is of no use to them if they can’t use it. It is because of this that is important for files to have some form of encryption. That way, they can break into your home, but they can’t sell your items if they don’t work.

Really it’s not a case of if media houses will be the victims of an attack, but when. It’s not the time to be complacent. Arm up. And, you may just be able to avoid the worst scenarios.

This blog post was written by Nick Pearce-Tomenius, Sales and Marketing Director, Object Matrix

Digital Production Partnership

Digital Production Partnership