Abstract
We developed the method and the model for managing protection of objects of informatization, based on the integrated implementation of decision support systems for the tasks on cybersecurity. The proposed solutions differ from the existing ones by the possibility to automate the procedure of generating variants for controlling actions using the decision support system, designed as a web application. The described model for the coordination of experts' opinions is based on the Delphi method. The approach proposed makes it possible to coordinate expert opinions, including to take into account different interval estimates of the degree of protection and information security metrics of the objects of informatization. Results are presented of testing under actual conditions at the enterprises of Ukraine the software complex Decision support system for managing cyber security of an enterprise ‒ DMSSCSE. The DSS is adapted for the on-line work of experts. It was established that the DSS DMSSCSE makes it possible to improve effectiveness of the applied organizational and technical measures to protect objects of informatization. The proposed solutions enabled bringing down the cost of organizing comprehensive information protection systems by 12−15 % compared to the existing methods
Highlights
Current stage of development of the postindustrial society has been accompanied by a rise in the number and complexity of cyberattacks against various IO ‒ information-communication system (ICS), automated control systems, etc
The time spent by experts for data processing using “DMSSCSE” is 35‒50 % less compared to an independent analysis by the analysts
It was established that the application of decision support systems (DSS) “DMSSCSE” makes it possible to reduce expenses for the organization of integrated IPS by 12‒15 % compared with alternative methods [2, 6, 10, 25]
Summary
Current stage of development of the postindustrial society has been accompanied by a rise in the number and complexity of cyberattacks against various IO ‒ information-communication system (ICS), automated control systems, etc. A new promising alternative direction emerges for providing IO CS based on employing intelligent information technologies of cyber defense. Such technologies include decision support systems (DSS) for IP and CS [4]. The research relevance is predetermined by the need for further development of the methodological apparatus, which allows implementation of the new intelligent DSS into management tasks on information protection and cybersecurity at various objects of informatization
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
More From: Eastern-European Journal of Enterprise Technologies
Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.