Cybersecurity “Proof of Performance” for the Broadcast IT System

The broadcast station today relies on an Information Technology (IT) infrastructure based upon the Internet Protocol (IP) whether a small radio station or a state-of-the-art ATSC 3 TV facility. Protecting the infrastructure against cyber threats grows more challenging each year for the broadcast IT engineer. Threats are constantly evolving and the cybersecurity precautions implemented must evolve as well. New Federal Communications Commission (FCC) regulations will likely add EAS focused cybersecurity compliance requirements in 2023.

It is essential to know your vulnerabilities and potential exposure to cyber criminals before implementing the necessary precautions. Penetration testing or pen testing provides a proof-of-performance of the broadcast IT infrastructure through proactive identification of cybersecurity holes and vulnerabilities. Precautions thought to be in place can be verified and any missing protections implemented before exploited by the cybercriminal.

This paper and presentation will explore the concepts of penetration testing, the value of use and tools available to apply to the broadcast IT environment as an approach to validating the cybersecurity readiness of the broadcast IT infrastructure against cyberattacks.

Wayne Pecena | Texas A&M University – KAMU TV & FM | College Station, Texas, United States