МАТЕМАТИЧЕСКАЯ МОДЕЛЬ УГРОЗЫ БЕЗОПАСНОСТИ ПЕРСОНАЛЬНЫХ ДАННЫХ КАДРОВОГО ОРГАНА ПРЕДПРИЯТИЯ ОПК

Abstract

The purpose of this article is to substantiate the indicator for evaluating the effectiveness ofmeasures to ensure the security of personal data of the personnel body of an industrial complexenterprise (hereinafter - the defense industry). To build a mathematical model of the probability ofa threat, the methodological apparatus for assessing current threats to information security,formed on the basis of regulatory and methodological documents of the FSTEC of Russia, is used.The article presents the author's interpretation of the main methodological provisions presented inthe documents under consideration in relation to the assessment of threats to the security of personaldata (hereinafter - PD) of the personnel body of the defense industry enterprise. The peculiarityof identifying vulnerabilities of information resources of the personnel body of the defenseindustry enterprise, through which it is possible to implement threats to the security of PD, is theuse of calculation methods that allow to establish the fact of the potential possibility of a threat. odetermine the vulnerabilities of the information resources of the personnel body of the defenseindustry enterprise to the implementation of threats to the security of PD, an expert analysis of theinformation environment of the IP is carried out. As a result, a set is formed, the elements of whichdetermine vulnerabilities. Thus, it is necessary to consider a mathematical model of the probabilisticcharacteristics of the occurrence of a threat to the security of the PD of the personnel body ofthe defense industry enterprise as a product of the probabilities of preventing unauthorized copying,unauthorized modification and blocking access to the information resources of the IS of thepersonnel body of the defense industry enterprise