Report: Broadcasters’ dim view of tech vendors’ security posture
September 10, 2024
Broadcasters and content providers have a dim view of the cyber security posture of media technology vendors. While those suppliers think there is little room for improvement in their own security practices. This is one of the key findings of the latest DPP report, The State of Media Technology Security 2024, a research project analysing the current state of IT security within the media industry which revealed the vastly different attitudes to cyber protection among content providers and vendors.
And while media and broadcast organisations take a cautious approach when assessing their own protection and defensive capabilities, technology providers believe they have secure systems, products, policies and vigilant staff — something the content providers find hard to believe.
“The State of Media Technology Security 2024 reveals a striking divide in how media companies and their technology partners approach cyber security,” said DPP Editorial Director Edward Qualtrough, the research lead and report author. “Broadcasters are cautious and wary of labelling themselves as ‘secure’; they know in every area of their business and in each media technology workflow from production to distribution there is more that can be done to improve security. Meanwhile vendors are more likely to take an incredibly optimistic — and perhaps somewhat naive — view of their responsibilities in an increasingly connected ecosystem, and of their capability to respond to the growing threat landscape.”
The DPP conducted an industry survey to produce The State of Media Technology Security 2024, and 59 organisations took part. Respondents were Chief Information Security Officers and product security leaders at some of the biggest organisations in media and broadcasting, and from key technology providers.
The research also revealed how media industry tech transformation initiatives have not necessarily led to better security. At least according to the content providers, who believe product innovations among their supplier base have added complexity and vulnerabilities to existing media business operations.
Vendors though do believe their products have made the industry more secure in all areas, and responded that broadcasters are rarely willing to sacrifice new features in a media tech product in order to improve its security.
The State of Media Technology Security 2024 is supported by DPP member company Ross Video.
John Naylor, Ross Video VP Product Security & Ross Research Labs, added: “It is evident in this research that vendors and media companies have divergent opinions on the quality of their cybersecurity, with vendors bullish and media companies less confident. Ross Video shares the media companies’ view: The whole industry has work to do. Beware complacency around cybersecurity – especially with the opportunities AI is giving attackers. It would be remiss or unwise to think you’re done. And in the last couple of years, we have seen dozens of large media companies learn that lesson the hard way.”