Trusted Partner Network (TPN) Framework Consultancy & Assessment Assistance
What is TPN Assessment?
The Trusted Partner Network (TPN) is a global, industry-wide film and television content protection initiative. The TPN helps companies prevent leaks, breaches, and hacks of their customers’ movies and television shows prior to their intended release.
The Trusted Partner Network (TPN) is a global, industry-wide film and television content protection initiative. The TPN helps companies prevent leaks, breaches, and hacks of their customers’ movies and television shows prior to their intended release.
How will the TPN address escalating content security threats?
The TPN establishes a single benchmark of minimum security preparedness for all vendors and their teams, wherever they work, and whatever their specialty. By creating a single, global directory of “trusted partner” vendors, content companies will have access to a centralized database to learn their TPN status.
The TPN establishes a single benchmark of minimum security preparedness for all vendors and their teams, wherever they work, and whatever their specialty. By creating a single, global directory of “trusted partner” vendors, content companies will have access to a centralized database to learn their TPN status.
Are there any precedents for such a program?
Other industry-wide security initiatives are well-established in finance, IT, payment processing, and healthcare. They have raised the levels of effectiveness and efficiency of their overall industry security.
Other industry-wide security initiatives are well-established in finance, IT, payment processing, and healthcare. They have raised the levels of effectiveness and efficiency of their overall industry security.
What are the benefits for vendors in the TPN program?
The TPN program provides a number of benefits to vendors, including:
The TPN program provides a number of benefits to vendors, including:
- Reduce the number of assessments conducted at each facility annually.
- Reduce the number of different controls used by various content owners.
- Create competitive, market-driven assessment pricing.
- Accelerate assessment report turn-around.
- Offer controls that are specific to the needs and workflows of specific vendor types.
- Assist in identifying vulnerabilities and communicate remediation through the TPN Platform.
- Allow vendors to promote their security preparedness.
What are the benefits for content owners in the TPN program?
The TPN program provides a number of benefits to content owners, including:
The TPN program provides a number of benefits to content owners, including:
- Create a single, central global directory of “trusted partner” vendors.
- Expand the community of approved, media & entertainment focused content security assessors.
- Elevate the security standards and responsiveness of the vendor community.
- Assist in identifying vulnerabilities and communicate remediation to the vendor community through the TPN Platform.
- Increase the number of third-party vendor facilities that are assessed annually.
Can I “fail” a TPN assessment?
The TPN assessment does not provide a “pass/fail” grade, certification, or rating. It provides an assessment of a facility’s security preparedness for conformance with the MPA content security best practices. If an assessment indicates non-conformance with a control or practice, any necessary remediation may be conducted by a separate but similarly approved TPN assessor. The vendor may also provide evidence of their own remediation to the TPN. The TPN also has a formal review and submission process for any assessment disputes. Assessors will be regularly measured and evaluated through the TPN Qualified Assessor Program.
The TPN assessment does not provide a “pass/fail” grade, certification, or rating. It provides an assessment of a facility’s security preparedness for conformance with the MPA content security best practices. If an assessment indicates non-conformance with a control or practice, any necessary remediation may be conducted by a separate but similarly approved TPN assessor. The vendor may also provide evidence of their own remediation to the TPN. The TPN also has a formal review and submission process for any assessment disputes. Assessors will be regularly measured and evaluated through the TPN Qualified Assessor Program.
MPA Best Practices: Common Guidelines
The Motion Picture Association (MPA) Content Security Best Practices Common Guidelines (CSBP-CG) is an Information Security Management System (ISMS) framework derived from ISO/IEC 27002-2013 and NIST 800-53. The MPA Content Security Best Practices Common Guidelines is industry specific and designed to be of use by any organisation that is engaged in the Media and Entertainment Industry. The framework can be used standalone or in conjunction with other ISMS or risk management regime such as the ISO/IEC 27000 family, ITIL and COBIT.