Performance indicators of the functioning of the information security system and cybersecurity of critical information infrastructure objects.

Keywords: indicators, criteria, evaluation, efficiency, functioning, information security and cybersecurity system, critical information infrastructure objects

Abstract

The scientific article solves the scientific and technical problem of choosing performance indicators for the functioning of the information security system and cybersecurity of critical information infrastructure facilities. The scientific novelty of the obtained result lies in the fact that for the first time indicators and criteria for evaluating the effectiveness of the functioning of the information security system and cybersecurity of critical information infrastructure facilities are proposed. The practical significance of the work lies in the fact that based on the obtained indicators and criteria in further works, it becomes possible to develop a methodology for evaluating the effectiveness of the information security system and cybersecurity of critical information infrastructure objects.

References

1. The law of Ukraine “On basic principles of ensuring cybersecurity of Ukraine”.
2. Maslova N.A. Methods of evaluating the effectiveness of information systems protection systems. Artificial Intelligence. 2008. No. 4.pp. 253-264. (in Russian).
3. Andreev K. Method of assessing the economic efficiency of the information protection unit. Information security. 2010. No.5.
4.Kozubtsova L.M., Khlaponin Yu.I., Kozubtsov I.M. Methodology for evaluating the effectiveness of measures to ensure cybersecurity of critical information infrastructure objects of organizations. Modern information technologies in the field of security and defense. 2021. No.2 (41). рр. 17-22. (in Ukraininan).
5. Kozubtsova L.M., Rudomino-Dushyatskaya I.A., Lunoda V.E. Calculus of performance indicators of the system of information security and cybersecurity // scientific journal "Computer-Integrated Technologies: Education, Science, production". 2021. issue No.45. pp. 19-25.
6. Department of Energy (2021) Cybersecurity Capability Maturity Model.
7. Center for Internet Security (2021) CIS Controls V8.
8. Information Systems Audit and Control Association (ISACA) (2021) Control Objectives for Information and Related Technologies.
9. International Energy Agency (2021) Enhancing Cyber Resilience in Electricity Systems.
10. International Society of Automation (2013) ISA 62443-3-3:2013 – Security for industrial automation and control systems Part 3-3: System security requirements and security levels (ISA, North Carolina, USA).
11. International Organization for Standardization/International Electrotechnical Commission (2013) ISO/IEC 27001:2013 – Information technology – Security techniques – Information security management systems – Requirements (ISO, Geneva, Switzerland).
12. National Institute of Standards and Technology and North American Electric Reliability Corporation (2020) Mapping of NIST Cybersecurity Framework v1.1 to NERC CIP Reliability Standards.
13. North American Electric Reliability Corporation (2021) NERC CIP Enforceable Standards.
14. National Institute of Standards and Technology (2018) Framework for Improving Critical Infrastructure Cybersecurity, Version 1.1. (National Institute of Standards and Technology, Gaithersburg, MD).
15. National Institute of Standards and Technology (2021) National Online Informative References Program.
16. Joint Task Force Transformation Initiative (2015) Security and Privacy Controls for Federal Information Systems and Organizations. (National Institute of Standards and Technology, Gaithersburg, MD), NIST Special Publication (SP) 800-53, Rev. 4, Includes updates as of January 22, 2015.
17. Appendix 1. methodological recommendations for improving the level of cyber protection of critical information infrastructure, approved by Order No. 601 of the State Service for Special Communications administration of October 6, 2021 (as amended by the Order of the administration Gosspetsvyaz No. 616 dated October 12, 2021).

Abstract views: 0
PDF Downloads: 0
Published
2022-10-01
How to Cite
Kozubtsova, L., Kozubtsov, I., Zdolbitskaya, N., & Koshelyuk , V. (2022). Performance indicators of the functioning of the information security system and cybersecurity of critical information infrastructure objects. COMPUTER-INTEGRATED TECHNOLOGIES: EDUCATION, SCIENCE, PRODUCTION, (48), 64-69. https://doi.org/10.36910/6775-2524-0560-2022-48-10
Section
Computer science and computer engineering