Политики информационной и кибербезопасности

Abstract

Information security is a critical issue in today’s world, as the constant threat of cyber-attacks and breaches continues to pose a serious threat to individuals, businesses and governments. To address this issue, it is necessary to evaluate the existing security measures and their effectiveness in protecting against cyber threats, as well as the decisionmaking processes that drive information security policy at the national and international levels. The classification of existing security measures and decision-making actors is an essential step in identifying areas of weakness and improving security policies. By taking a comprehensive approach to the subject, this research has provided insight into different levels of policy development and implementation, as well as the key actors involved at each stage. The review, classification and analysis of existing cybersecurity ratings have also contributed to the identification of areas for improvement. Despite the lack of transparency in the methodology and robustness issues of most ratings, this work has provided some important insights into the overall effectiveness of different cybersecurity and information security policies. Finally, the finding that gaps and theoretical-methodological inconsistencies in the field of national information and cybersecurity research can be explained by the opaque and non-objective methodology used to evaluate the effectiveness of policies is crucial. It shows that there is a need for more transparent and objective methodologies that can accurately evaluate cybersecurity policies at the national and international levels, taking into account the unique challenges and contexts within which they operate.