DOI: 10.18413/2518-1092-2024-9-1-0-3

ENSURING INFORMATION SECURITY IN EXECUTIVE AUTHORITIES. PROBLEMS AND SOLUTIONS

Alexey Vasilyevich Fedorov
Alexander Gennadievich Zhikharev
Daniil Mikhailovich Kalchenko

The article discusses the main problems and, accordingly, the security measures taken by executive authorities, which define goals and objectives, risk assessment. The basic principles of the choice and implementation of protective measures, the development of information security procedures and policies are considered, the main domestic information security management systems are proposed, the main forms of employee training, monitoring and actions taken based on the analysis of monitoring results are also described. The stages of incident analysis in the process of incident investigation are defined, which allow identifying vulnerabilities and problems in the security system and taking measures to eliminate them. The regular updating and improvement of the security system is due to the provision of more reliable protection against various types of threats, several recommendations are given for the revision and adaptation of information security policies in order to adapt to changing conditions and requirements. The reasons for the expediency of implementing information security management systems are given.

Keywords: information security problems, security measures, risk assessment, protective measures, information security management systems, monitoring and analysis of results, investigation of incidents, vulnerabilities and problems, revision and adaptation of information security policies, the feasibility of implementing information security management systems.

Number of views: 205 (view statistics)

Количество скачиваний: 626

Full text (PDF)To articles list

Information for citation:

Fedorov A.V., Zhikharev A.G., Kalchenko D.M. Ensuring information security in executive authorities. Problems and solutions // Research result. Information technologies. – Т.9, №1, 2024. – P. 19-28. DOI: 10.18413/2518-1092-2024-9-1-0-3

User comments
Reference lists

While nobody left any comments to this publication.
You can be first.

IT specialists in the field of information security in 2022. − URL: https://habr.com/ru/articles/679086/. – [Electronic resource].
Cybersecurity in 2022-2023. Trends and forecasts − URL: https://www.ptsecurity.com/ru-ru/research/analytics/ogo-kakaya-ib/#id2. – [Electronic resource].
Foundation for the Promotion of Secure Information Technologies. Welcome, senors! Cybersecurity labor market in the third quarter of 2023. − URL: https://fsrbit.ru/post/2132. – [Electronic resource].
Udovichenko A. IB strategy: have you decided how to move forward? – 02/27/2019 − URL: https://habr.com/ru/companies/softline/articles/441920/. – [Electronic resource].
AstraLinux security model — the basis for testing new GOST standards – 05/14/2021− URL: https://astralinux.ru/about/press-center/news/model-bezopasnosti-astra-linux-osnova-dlya-aprobatsii-novykh-gostov/. – [Electronic resource].
Shilyaev S. Problems of information security: algorithm for building an information security system from scratch – 02/24/2015. − URL: https://kontur.ru/articles/1622. – [Electronic resource].
Software registry. Ministry of Digital Development, Communications and Mass Communications of the Russian Federation. − URL: https://reestr.digital.gov.ru/. [Electronic resource].
Decree of the President of the Russian Federation No. 250 of 01.05.2022 on additional measures to ensure information security of the Russian Federation. − URL: http://www.kremlin.ru/acts/bank/47796. – [Electronic resource].
GOST R ISO/IEC 27001-2021. Information technology. Methods and means of ensuring security. Information security management systems. Requirements: national standard of the Russian Federation: official publication: approved and put into effect by the order of the Federal Agency for Technical Regulation and Metrology dated November 30, 2021 N 1653-st. − URL: https://garant.belregion.ru/#/document/403510768/paragraph/764/doclist/32/showentries/0/highlight/ГОСТ%20Р%20ИСО%7CМЭК%2027001-2021:2. – [Electronic resource].
GOST R ISO/IEC 27002-2021. Methods and means of ensuring security. Information technology. Methods and means of ensuring security. Code of Norms and Rules for the application of information security measures: official publication: approved and put into effect by Order of the Federal Agency for Technical Regulation and Metrology dated May 20, 2021 N 416-art. − URL: https://garant.belregion.ru/#/document/402878331/paragraph/1/doclist/33/showentries/0/highlight/ГОСТ%20Р%20ИСО%7CМЭК%2027002-2021:4. – [Electronic resource].

All journals

Send article

Research result. Information technologies is included in the scientific database of the RINTs (license agreement No. 765-12/2014 dated 08.12.2014).

Журнал включен в перечень рецензируемых научных изданий, рекомендуемых ВАК

The journal is indexed by the following scientific databases and platforms

Research Result. Research result. Information technologies (ISSN 2518-1092)

The journal materials and website are licensed under Creative Commons «Attribution» 4.0 International.

The Founder: Federal State Autonomous Educational Institution of Higher Education "Belgorod National Research University"The Founder’s address: 85 Pobedy Street, Belgorod, the Belgorod region, 308015, Russia

The Publisher: Federal State Autonomous Educational Institution of HigherEducation "Belgorod National Research University" The Founder’s address:85 Pobedy Street, Belgorod, the Belgorod region, 308015, Russia

Editors Office: chief editor Chernomorets Andrey Alekseevich, e-mail: RR_IT@bsu.edu.ru, phone: +7 (4722) 30-13-92.

Registered by the Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor)

Certificate

Info letter (Russian)

Have questions?
You can write to us:

✉ Content manager

✉ Site administration

✉ Executive Secretary