Business Information Security

Abstract

The article highlights the problem of business information security under digitalization processes spreading, which, being a driver of all the sectors of economy development, at the same time have led to destructive phenomena, namely information wars, information terrorism, large-scale cyber-attacks. Negative impact of the latter, which is seen in huge financial losses, raises the issue of business information security. It is proved that ensuring timely identification of potential and real threats to business information security is necessary in order to minimize and prevent the causes of their manifestation, to develop a set of preventive measures. An information security system is suggested, which is based on a clear algorithm of defined procedures that will ensure reliability, confidentiality, integrity and availability of information resources of the entity, as well as neutralize potential and minimize real risks and threats to the company's information environment, including cyberspace. A number of preventive work approaches to minimize risks to business information security are defined, based on general rules of information security and provide implementation of high-tech strategies for digital protection against cyber threats. The main modern methods of counteracting threats and cyber threats are identified, which allow businesses to identify the possible number of threats, analyze losses, including financial ones, from attacks made, as well as implement preventive measures to minimize risks. Based on the analysis of the annual global financial losses from cyber-attacks and the dynamics of financial investments in cyber security, the need to implement an information security system for each business entity has been proven.