Practical Points for Information Security Considering Limited Financing
DOI:
https://doi.org/10.28925/2663-4023.2018.1.2634XKeywords:
threats, risks, categorie, cybersecurity, strategy, financingAbstract
This article provide the detailed analysis of tendencies of cyber threats development and trends to ensure the informational security by the world`s community. Modern development of perspective informational system and technologies promote the uprising of new forms of cyberattacks that lead the state, banking and private informational resources to threats with which these agencies are not ready to deal. The article defines the tendency on creation at cyberspace the principles of hybrid war. Preconditions for such hybrid wars are the interest of government structures to receive information which could be used by opposing parties in world`s competitive and political battles. The article defines the adaptive creation of directions for preventive actions on informational and cyber security. Document underlines the absence, in most cases, of any security strategy to protect key informational systems considering the existent risks. Article focuses that threat model should consider the complete compromising of information and cyber security systems during targeted attack to informational assets of state, banking and private organizations. Document considers the possible directions to ensure informational and cyber security in case of limited financing. Article provides CIS Control elements assisting to prioritize and ensure the informational security of business. Document includes the list of key directions to create the priorities of informational security in state, banking and private organizations. Article analyses and generate recommendations and requirements on practical aspects for development of security policy considering limited financing. One of the ways for optimization of financial resources allocated for informational security systems, considering the defined risks, could be the application of word`s best practices, as well the clear coordination of requirements to ensure informational and digital transformation by business and creation of coordinated regulatory requirements for certain businesses considering informational and cyber security. The article provides minimum requirements to ensure informational and cyber security in state, banking and private organizations.
Downloads
References
“Center for Internet Security.” [Онлайн]. Режим доступу: https://www.cisecurity.org/controls/ [18 черв. 2018].
“CIS Controls Version 7 — What’s Old, What’s New.” [Онлайн]. Режим доступу: https://www.cisecurity.org/cis-controls-version-7-whats-old-whats-new/ [18 черв. 2018].
«Давос 2018: совместный ответ глобальным угрозам», Euronews. [Онлайн]. Режим доступу: http://ru.euronews.com/2018/01/24/davos-2018-what-are-humanitarian-organisations-bringing-to-the-world-economic [18 черв. 2018].
“Information Resistance.” [Онлайн]. Режим доступу: http://sprotyv.info/ru/news/kiev/es-utverdil-mery-po-usileniyu-svoey-kiberbezopasnosti [18 черв. 2018].
“Russia step supcyber-attackson UK,» The Sunday Times, Feb. 2017. [Онлайн]. Режим доступу: http://www.thetimes.co.uk/edition/news/russia-steps-up-cyber-attacks-on-uk-rl262pnlb [18 черв. 2018].
«В Давосе объявили о создании Глобального центра кибербезопасности», UKRINFORM. [Онлайн]. Режим доступу: https://www.ukrinform.ru/rubric-technology/2389711-v-davose-obavili-o-sozdanii-globalnogo-centra-kiberbezopasnosti.html [18 черв. 2018].
“Reports 2018,” World Economic Forum. [Онлайн]. Режим доступу: http://www3.weforum.org/docs/WEF_GRR18_Report.pdf [18 черв. 2018].
«Из-за атаки хакеров Минфин и Госказначейство потеряли 3 терабайта данных». [Онлайн]. Режим доступу: http://biz.censor.net.ua/n3017228 [18 черв. 2018].
Ю. В. Борсуковський, В. Ю. Борсуковська і В. Л. Бурячок, «Напрямки формування політик кібербезпеки для державного, банківського та приватного секторів», Modern Methodologies, Innovations, and Operational Experience on the Field of Technical Science, Radom, Republic of Poland, сc. 8–11, Dec. 2017.
В. Ю. Борсуковська і Ю. В. Борсуковський, «Безперервність бізнесу: новий тренд або необхідність»,
Економіка. Менеджмент. Бізнес, №2 (20), сc. 48–52, 2017.
Ю. В. Борсуковський, В. Л. Бурячок і В. Ю. Борсуковська, «Базові напрямки забезпечення кібербезпеки державного та приватного секторів», Сучасний захист інформації, №2 (30), сс. 85–89, 2017.
