«Automation and Informatization of the fuel and energy complex»

Approaches to information security management based on modern technologies

UDC: 338.45:662.6
DOI: -

Authors:

¹ National University of Oil and Gas "Gubkin University", Moscow, Russia

Keywords: information security, cybersecurity, artificial intelligence, quantum computing, blockchain, risk management, operational management, automated management systems

Annotation:

In the context of rapid digital transformation and an increase of the volume of transmitted and stored data, guarantee of information security (including that one in automated control systems) is becoming a national task. According to the study by Cybersecurity Ventures, global cybersecurity costs are expected to reach $ 1 trillion until 2025. This growth is not occasional; it is caused by an exponential increase of cyberattacks number. According to IBM data, the average damage from a single incident in 2021 made 4,24 million dollars. Not only large corporations are under the threat, but also small businesses, whose recovery costs can reach 30 % of annual turnover. Effective information security management is becoming an integral part of operational management, requiring an interdisciplinary approach and the use of modern technologies. This article presents a comprehensive analysis of methodologies and approaches to information security management based on modern technologies such as artificial intelligence, quantum computing and blockchain. The main purpose of the study is to determine the optimal management methods that reduce the probability of cyber incidents by 25…40 % and minimize financial losses by 15…30 %.

Bibliography:

1. Budnikova I.K., Priymak E.V. Modelirovanie upravlyaemykh protsessov s primeneniem metodov setevogo planirovaniya // Vestn. tekhnolog. un-ta. – 2018. – T. 21, № 1. – S. 115–118.
2. Metod setevogo planirovaniya razrabotki slozhnykh tekhnicheskikh sistem / R.V. Dopira, R.Yu. Kordyukov, A.A. Begletsov, S.V. Sergienko // Programmnye produkty i sistemy. – 2014. – № 2. – S. 22–26.
3. Erokhin S.D., Petukhov A.N., Pilyugin P.L. O sravnenii sistem zashchity informatsii pri asimptoticheskom upravlenii informatsionnoy bezopasnost'yu KII // Tr. ucheb. zavedeniy svyazi. – 2020. – T. 6, № 3. – S. 66–74. – DOI: 10.31854/1813-324X-2020-6-3-66-74
4. Isaeva M.F. O vnutrennikh ugrozakh informatsionnoy bezopasnosti // Mezhdunar. nauch.-issled. zhurn. – 2019. – № 5-1(83). – S. 26–28. – DOI: 10.23670/IRJ.2019.83.5.005
5. Komarov V.A., Sarafanov A.V. Sistemy interneta veshchey v protsesse mul'tidistsiplinarnoy podgotovki kadrov dlya tsifrovoy ekonomiki i ikh proektirovanie // Biznes-informatika. – 2021. – T. 15, № 2. – S. 47–59. – DOI: 10.17323/2587-814X.2021.2.47.59
6. Kuznetsov A.V. Sposob organizatsii protsessa upravleniya sobytiyami v chasti ikh obrabotki v ramkakh sistemy upravleniya informatsionnoy bezopasnost'yu predpriyatiya // Vopr. zashchity inform. – 2015. – № 2(109). – S. 57–62.
7. Malyuk A.A., Morozov A.V. Formirovanie tsifrovoy ekonomiki i problemy sovershenstvovaniya normativno-pravovogo regulirovaniya v oblasti obespecheniya informatsionnoy bezopasnosti // Bezopasnost' inform. tekhnologiy. – 2019. – T. 26, № 4. – S. 21–36. – DOI: 10.26583/bit.2019.4.02
8. Nazarenko M.A., Fetisova M.M. Razrabotka metodov i sredstv planirovaniya proizvodstvennykh protsessov // Organizator pr-va. – 2014. – № 4(63). – S. 26–34.
9. Nazarenko M.A., Fetisova M.M. Razrabotka metodov i sredstv upravleniya proizvodstvennymi protsessami i ikh rezul'tatami // Nauch. obozrenie. – 2014. – № 8-3. – S. 1155–1159.
10. Polyanichko M.A. Primenenie modeli zrelosti dlya protivodeystviya insayderskim ugrozam informatsionnoy bezopasnosti // Mezhdunar. nauch.-issled. zhurn. – 2019. – № 4-1(82). – S. 57–59. – DOI: 10.23670/IRJ.2019.82.4.010
11. Rybolovlev D.A., Karasev S.V., Polyakov S.A. Klassifikatsiya sovremennykh sistem upravleniya intsidentami bezopasnosti // Vopr. kiberbezopasnosti. – 2018. – № 3(27). – S. 47–53. – DOI: 10.21681/2311-3456-2018-3-47-53
12. Sizov V.A., Kirov A.D. Problemy vnedreniya SIEM-sistem v praktiku upravleniya informatsionnoy bezopasnost'yu sub"ektov ekonomicheskoy deyatel'nosti // Otkrytoe obrazovanie. – 2020. – T. 24, № 1. – S. 69–79. – DOI: 10.21686/1818-4243-2020-1-69-79
13. Sizov V.A. Razrabotka metoda mnogokriterial'nogo benchmarkinga informatsionnoy bezopasnosti organizatsii // Inzhiniring predpriyatiy i upravlenie znaniyami (IP&UZ-2019): sb. nauch. tr. XXII Mezhdunar. nauch. konf., M., 25-26 apr. 2019 g.: v 3 t. T. 2 / pod nauch. red. Yu.F. Tel'nova. – M.: Ros. ekonom. un-t im. G.V. Plekhanova, 2019. – S. 97–100.
14. Sirotyuk V.O. Modeli, metody i sredstva razrabotki i vnedreniya effektivnoy sistemy upravleniya informatsionnoy bezopasnost'yu patentnogo vedomstva // Internet-zhurn. Naukovedenie. – 2017. – T. 9, № 6. – S. 5.
15. Gribust I. Environmental elements for revitalization of entomophages in the forest plantations of the arid zone // World Ecology J. – 2019. – Vol. 9, No. 1. – P. 55–69. – DOI: 10.25726/NM.2019.86.67.004