Business

Convergent Sees Uptake in Remote Security Assessments for Business Continuity (MESA)

Convergent is seeing a growing number of vendors opt for remote security assessments to keep their businesses in line with content owner security requirements during the COVID-19 crisis. The current travel restrictions on us all mean that Convergent’s security assessors are now working from home to conduct remote TPN assessments helping vendors to maintain the recommended security levels.

Remote TPN Assessments

A growing number of studios are accepting this as a viable alternative, whilst physical access is prevented, provided an on-site assessment is completed as soon as practicable once restrictions are lifted, for which there is no additional cost. Convergent has issued an FAQ covering remote assessment options to help support vendors through this period. Convergent’s goal is to assist those vendors who are required or wish to maintain studio expectations for security, without incurring additional financial cost. More details can be found at www.convergentrisks.com.

Remote Pre-Assessments

Other vendors earlier on in the TPN process are opting for a preparatory remote pre-assessment which helps them to better prepare for the full TPN assessment. The independent assessment will help to ensure that workflows comply with current MPA best practice, enabling remediation to be carried out in advance, providing an easier experience when the TPN on-site assessment can take place.

Increased Network Vulnerabilities

Through its monthly vulnerability scanning service, Convergent is witnessing an increase in vendor network vulnerabilities. The likely cause will from gateway router and VPN modifications that enable remote home working or through facilitating cloud-based applications in order to get things operational during COVID-19. This is inadvertently introducing key risks, which could remain undetected until they materialize into future breaches and therefore should be acted on as soon as practicable.

In the current climate where there are reported incidents of increased phishing and cyberattacks it will be important to increase the regularity of scanning and testing. Convergent provides internal and external vulnerability scanning and penetration testing for many of the vendors going through the TPN process.

Secure Remote Working

As remote working is the most viable solution for business continuity we continue to update our advice and guidance in the form of a remote working ‘Security Guideline’ and ‘Checklist’ available via our website. For any additional advice, guidance or assistance our team of assessors is available to act as a reference point via a security surgery video call for which there is no charge.

Regular Updates

We will continue to provide regular updates and work closely with our partner studios, associations and customers to ensure that vendors can push ahead securely with confidence, while aiming to strike the right balance of providing sufficient but not excessive information. Further updates will be provided via our website.