THE RISKS OF ISIDER THREATS IN INFORMATION SECURITY SYSTEMS OF ENTERPRISE

Authors

  • В В Корчинський
  • Халед Аль-Файюми
  • Ю В Копитін
  • М В Копитіна

DOI:

https://doi.org/10.33243/2518-7139-2019-1-2-112-116

Abstract

The development of information technology determines necessity the development of methods and tools to ensure the sustainability of information security systems. The insider threat is one of the most serious and growing problems for information security systems of the organization in any area of human activity and requires the adoption of appropriate measures to prevent it. The effective response to the insider threat is the necessary condition for the successful implementation of any security system. The optimal way to deal with this problem is to accept the number of effective and consistent regulatory measures to minimize insider threats. Along with the existing methods and means of information security risk management, this problem has not been fully solved, as evidenced by the statistical reports of large foreign companies about internal incidents and threats. According to various researches, the threats of information security by insiders is up to 80%, that is, they can arise from within the organization itself. The relevance topic of the research is justified by solving the most important scientific problem - the development methods and means of minimizing risks of insider threats in information security systems of enterprise. The aim of the research is to analyze and minimize the risks insider threats in information security systems of enterprise. In the article considers the risks of insider threats and presents the classification of the actions of enterprise employees that lead to insider trading. The algorithm is proposed for evaluating the work in information security systems for the task of analyzing the risks insider threats and taking measures to reduce them.

Issue

Section

Радіотехніка і телекомунікації