The recently published update of cybersecurity recommendation EBU R 143 now includes provisions specifically tailored to Software as a Service (SaaS) products. This move underscores the evolving landscape of cybersecurity threats and the increasing reliance on cloud-based services within the broadcasting industry.
EBU R 143 is a set of guidelines developed by the EBU to assist audiovisual media organizations in safeguarding their digital assets and infrastructure from cyber threats. Initially released in 2016, the recommendation has been periodically updated to address emerging challenges and technologies in the field of cybersecurity.
Embracing SaaS products
The inclusion of SaaS products within EBU R 143 reflects the well-established trend among broadcasting organizations to leverage cloud-based solutions for various operational needs. SaaS platforms offer numerous advantages, including scalability, flexibility, and cost-effectiveness – but they also introduce a shift of responsibility towards the vendors in the field of cybersecurity and data privacy.
The updated recommendation now includes an additional list of cybersecurity requirements for SaaS Products, including strong access management, data protection, security monitoring and incident remediation. The Security Controls Assertation file now also includes a section for SaaS solutions. EBU recommends that broadcasters engaged in tenders use it as a basis to set minimal system acceptance levels in their purchasing processes.
All EBU Cybersecurity recommendations underscore the importance of collaboration and information sharing among broadcasting organizations, industry stakeholders, and cybersecurity experts. By exchanging insights, best practices, and threat intelligence, the broadcasting community can collectively enhance its resilience against cyber threats and safeguard the integrity of media content and services.