Media Cybersecurity Vulnerability Testing and Risk Assessment

Media Cybersecurity Vulnerability Testing and Risk Assessment

Overview

In media organizations that are transitioning to network-based production infrastructures, cybersecurity has become a strategic priority and everyone’s responsibility. It is essential to know how to secure working processes, identify vulnerabilities and mitigate the risks of cyber-attacks on your production.

In this Master Class, through lectures, demos, and practical exercises you will learn:

  • To identify cybersecurity vulnerabilities and how to scan them on your production equipment and networks,
  • To assess cybersecurity risks on your production infrastructure.

Who it's for

  • Broadcast production technicians and engineers with intermediate knowledge of IT and networks
  • Professionals with a general understanding of cybersecurity in media

Skill Learnt

  • Understand what a vulnerability in the cybersecurity domain is: definition concepts, examples, famous vulnerabilities,  
  • Scan vulnerabilities and learn about the tools available to test your equipment,
  • Test the security of your network at the basic level,
  • Assess cybersecurity risks,
  • Benefit from EBU Media Cybersecurity recommendations and guidelines to strengthen the security of your production infrastructure.

Schedule

Day 1: 13:00 -17:30

Day 2: 09:00 -13:00

Programme Outline

IT vulnerabilities

  • Definitions and keywords, famous vulnerabilities
  • Understanding vulnerabilities by examples
  • Testing tools
  • EBU Recommendations and security testing guidelines
  • Demo: examples of vulnerabilities form the Internet
  • Engaging with broadcast manufacturers
  • Vulnerability management and mitigation

Case studies

Practical exercises

Security testing checklist & key take aways

Practice

Practical exercises: Depending on their level of expertise and function, participants will have the possibility to choose between two tracks:

  • Track 1: Risk Assessment track, including practical exercises.
  • Track 2: Vulnerability scanning track including the possibility to test various equipment (switch, encoder, converter, camera…) to detect cybersecurity vulnerabilities

Collaboration:

This Master Class organized in collaboration with VRT and EBU Technology & Innovation - MCS: https://tech.ebu.ch/groups/mcs

Certification

Upon completion of the course, you will be awarded an EBU Academy Certificate

Meet your faculty

Gerben Dierick

Chief Information Security Officer at VRT

Gerben Dierick is Chief Information Security Officer at VRT, and co-chair of the EBU Media Cyber Security group. He has worked in and lectured on cybersecurity for over 20 years. Gerben enjoys digging deep into the technical details as well as working on the human and policy level.

Jakob Pfister

IT security engineer at ARGE Rundfunk-Betriebstechnik's Information Security and Technology dept

IT security engineer at ARGE Rundfunk-Betriebstechnik's Information Security and Technology dept. (common subsidiary of ARD and ZDF in Germany).
Jakob started as a broadcast system engineer (mainly testing NLEs/Storage) and shifting focus to security over time.  Since 2012, Jakob has been working full time in IT security covering topics such as Penetration-Testing Broadcast (and other IT-) Systems, building custom testing-software and auditing concepts and deployments. Furthermore, Jakob has been giving training courses on IT security and pushing open source software. Jakob is active in EBU MCS group with focus on security testing.