Tech Pro

949.864.6999

CDSA Audit Preparation & Audit Remediation

CDSA Compliance Assistance

In the past five years, TechPro Enterprise have been helping post production facilities in the media & entertainment space to secure their IT infrastructure and Content Delivery Workflow.

The framework that we have been using to secure these facilities is based on the CDSA’s Content Security – Recommended Best Practices For Production, Post Production & Editorial.

As such, our services have been focused around assisting post production facilities with their Audit Preparation & Audit Remediation to ensure they meet the CDSA security framework and thus are able to Successfully Pass the CDSA Audit and gain their certification.

CDSA Audit Remediation Overview

We have developed the following packages below in order to assist our clients.

Audit PreparationAudit Remediation PlanRemediation Work*

Audit Preparation Package

    • Review/Document Existing Security Profile (internal/external)
    • Compare Documented Profile to Audit Framework and prepare answers

Audit Remediation Introduction Package

  • Review Audit Results
  • Prepare Audit Response/Plan Outline
    • External Network Security
    • Internal Network Security
    • Physical Security
    • Incident Response
  • Review Plan with Client

Audit Remediation Execution

(*Scope determined by Remediation Introduction)

  • External Security Remediation Plan
    • Network Architecture
      • Firewall
      • Switches/Routers
      • IDS/IPS
      • Internet
      • Telecom
    • LDAP
    • DNS
    • Cloud
    • VPN
    • PEN Testing
    • Vulnerability Testing
    • System Logging
  • Internal Security Remediation Plan
    • vLAN Definition
      • Wireless – Internet Only (employee/guest)
      • Production (no internet access)
      • Wired Internet Only (no content access)
      • Security (separate from others)
      • Telecom
    • Server & Storage
      • Windows
      • Virtualization (VMware/Hyper-V)
      • Backup/Recovery
      • Office 365/Exchange/Active Directory
      • Storage Partitioning
      • Drive Encryption
    • Desktop
      • Anti-Virus
      • Hard Drive Encryption
  • Physical Security Remediation Plan
    • Cameras/DVR
    • Key Card/Pad Entry
  • Incident Response Plan
    • Identify Key Team Members/Roles and Responsibilities
      • Executives
      • Information Technology
      • Forensic Specialist
    • Document Response Parameters
      • Internal
      • Vendors
      • Clients
      • Press
    • Document Process Steps
    • Dry Run Test

CDSA Audit Preparation

TechPro is expertly positioned to assist its clients with navigating and preparing to answer the approximately 200 controls in the TPN Audit Framework.

These controls measure all aspects of the production workflow including: background checks, contracts, segregation of duties, physical security, content security, network security, and access control.

Proper Audit Preparation includes onsite investigation of existing hardware, software, and network and production workflows. The results of this investigation is documented by TechPro in preparation for the audit. This report helps reduce the amount of time a client must spend answering inquiries from the TPN audit team.

Tech Pro offers a tailored engagement to prepare its clients for the TPN audit.
The scope with Depend on the size (and scope) of the client’s employee base, number of locations and scope of production workflow.

CDSA Audit Remediation – Introduction

Once a certified TPN audit has been completed, every client will be provided with a written report that identifies whether the facility is TPN certified or what must be changed, fixed, modified, or eliminated in order to satisfy the specific TPN control listed in the report.

As part of the Audit Remediation Introduction, TechPro will review the TPN Audit remediation report and provide its client with a specific plan that addresses all of the deficiencies identified.

Depending on the scope of the Audit Remediation report, TechPro offers an Audit Remediation Introduction. The report will encompass: Internal/External Network Security, Physical Security, and Incident Response. Also included in the report will be the initial costs to appropriate the hardware, software, and services necessary to gain the TPN certification. Once completed Tech Pro will schedule the required sessions necessary to review the report in detail with the client and discuss additional remediation steps.

CDSA Audit Remediation – Execution

TechPro is also the trusted provider of hardware, software, and services required to execute against the Audit Remediation Report.

TechPro will help define the right network architecture including: firewalls, routers, IDS/IPS, and Telecom. Tech Pro supports a wide variety of industry leading hardware providers such as Cisco, WatchGuard, Dell, Meraki and many others. Software and event logging solutions including FirePower, SourceFire, or Snort to name a few are also a part of the TechPro Security deployment strategy.

TechPro network engineers are experts at establishing internal networks whether wired or wireless. Our team is certified with industry leading solutions from Cisco/Meraki, HP/Aruba. Tech Pro consultants can also assist with developing a BYOD solution to insure devices (i.e., desktops, laptops, smartphones, and tablets) brought into your environment are secured including the use of the latest anti-virus/malware solutions and industry standard encryption (e.g., BitLocker).

Tech Pro is a certified Microsoft Partner. Our team is able to help with Windows Server, Storage, Active Directory, and Office 365/MS-Exchange deployments whether on premise or in the cloud.

Tech Pro is also positioned to provide the ongoing testing required as part of TPN including PEN Testing and Vulnerability Scans.

Tech Pro physical security specialists are ready to help design, install, and test hi-definition cameras, access controls, and DVR/NVR recording systems.

Finally, Tech Pro realizes that cyber incidents are now, unfortunately, a part of doing business. To assist our clients, Tech Pro is ready to help define the team and process necessary should a cyber incident impact their company. We’ll then walk you through a dry-run test to insure your team is prepared.

Protect Your Content From Every Angle

TechPro has worked on films including “Star Wars 7,” “Mission Impossible 5,” “Star Trek Beyond” and many more to safely encrypt and protect their film content assets.
TechPro will assist you with your CDSA risk assessment, classify your assets and execute a comprehensive content security plan that protects your infrastructure at every touchpoint.
Facilities and Vendor types we can help secure include:

  • On-Set Production
  • Transportation & Storage
  • Visual Effects (VFX)
  • A/V Post
  • Audio
  • Localization
  • Film Lab
  • Digital Cinema
  • Marketing
  • Home Entertainment