BUSINESS CYBER SECURITY IN TIME OF WAR
Abstract
The article reveals the key aspects of business cyber security in wartime. It was determined that in recent years, the use of information technologies in the process of hybrid warfare caused the emergence of fundamentally new cyber threats of a higher level, which are aimed at national and international security. It was found that the spectrum of modern cyberattacks is quite diverse. The key types of cyber threats are considered, which are divided into external, targeted and internal cyber threats. Challenges for Ukraine in the field of cyber security are considered. It was established that the new era of cyber security requires completely new approaches to the management of the enterprise and its resources, in particular information. It was found that partners and suppliers can be the weak link in the company's cyber security. It has been proven that regardless of the causes of their occurrence, cyber incidents in one way or another pose a threat to the continuous activity and sustainable development of any enterprise. It was determined that the main tool for overcoming cyber attacks is the cyber protection system based on existing organizational and technological capabilities, financial and human resources, as well as the regulatory and legal basis. The system administrator is most often responsible for building the specified system at the local level. At large enterprises, the construction of a complex to counter cyber threats is already a management problem, for the solution of which it is necessary to involve specialized specialists. Regardless of the specific tools that are planned to be used, security management is carried out according to the following principles: localization of the human factor; understanding critical places and sources of danger; risk monitoring; the possibility of prompt response. Preventive measures for business cyber protection are defined. It was found that private business cyber security audits should be conducted by independent auditors, and reports should be provided to industry regulators. It has been proven that business cyber security is a continuous and extremely relevant process in modern Ukrainian realities. It is a process, since the enemy is constantly working on improving attacks, which means that we should work on improving defense. This task remains strategically important for both public institutions and private businesses.
References
Білявська Ю., Шестак Я. Кібербезпека та кібергігієна: нова ера цифрових технологій. Товари і ринки. 2022. № 3. С. 47 59.
Вишнівський В. В., Пампуха А. І. Кібербезпека в Україні. Цифрова трансформація кібербезпеки: науково-практична інтернет-конференція, 20 квітня 2022, Державний університет телекомунікацій Навчально-наукового інститут захисту інформації. Київ, 2022. С. 31 33.
Майже половину кібератак СБУ виявляє у режимі «реального часу». URL: https://www.ukrinform.ua/rubric-technology/3584942-majze-polovinu-kiberatak-sbu-viavlae-u-rezimi-realnogo-casu.html
Ескалація кіберзагроз національним інтересам України та правові аспекти кіберзахисту: монографія / О. Д. Довгань, І. М. Доронін; НАПрН України, НДІІП. Київ : Видавничий дім «АртЕк», 2017. 107 с.
Кібербезпека: як українському бізнесу захиститися від атак російських хакерів під час війни. Поради від IT-фахівців. URL: https://uaspectr.com/2022/07/27/yak-ukrayinskomu-biznesu-zahystytysya-vid-atak-hakeriv/
Про рішення Ради національної безпеки і оборони України від 14 травня 2021 року «Про Стратегію кібербезпеки України»: Указ Президента України; Стратегія від 26.08.2021 № 447/2021. URL: https://zakon.rada.gov.ua/laws/show/447/2021#n12
Кібератаки можуть прийти через постачальників. Як захиститися? URL: https://delo.ua/telecom/kiberataki-mozut-priiti-cerez-postacalnikiv-yak-zaxistitisya-404662/
Кібербезпека бізнесу в умовах нестабільності. URL: https://www.pwc.com/ua/uk/publications/2022/cybersecurity-uncertainty-state.html
Biljavsjka, Ju., Shestak, Ja. (2022). Kiberbezpeka ta kiberghighijena: nova era cyfrovykh tekhnologhij [Cyber security and cyber hygiene: a new era of digital technologies]. Tovary i rynky – Goods and markets, 3, 47 59. (in Ukrainian)
Vyshnivsjkyj, V. V., Pampukha, A. I. (2002). Kiberbezpeka v Ukrajini [Cybersecurity in Ukraine]. Cyfrova transformacija kiberbezpeky: naukovo-praktychna internet-konferencija – Digital transformation of cyber security: scientific and practical internet conference, 20 kvitnja 2022, Derzhavnyj universytet telekomunikacij Navchaljno-naukovogho instytut zakhystu informaciji, m. Kyjiv, 31 33. (in Ukrainian)
Majzhe polovynu kiberatak SBU vyjavljaje u rezhymi «realjnogho chasu» [Almost half of cyberattacks are detected by the SBU in "real time" mode]. Available at: https://www.ukrinform.ua/rubric-technology/3584942-majze-polovinu-kiberatak-sbu-viavlae-u-rezimi-realnogo-casu.html (in Ukrainian)
Eskalacija kiberzaghroz nacionaljnym interesam Ukrajiny ta pravovi aspekty kiberzakhystu: monoghrafija [Escalation of cyber threats to the national interests of Ukraine and legal aspects of cyber protection: monograph] / O. D. Dovghanj, I. M. Doronin; NAPrN Ukrajiny, NDIIP. Kyiv: Vydavnychyj dim «ArtEk». 2017. 107 s. (in Ukrainian)
Kiberbezpeka: jak ukrajinsjkomu biznesu zakhystytysja vid atak rosijsjkykh khakeriv pid chas vijny. Porady vid IT-fakhivciv [Cyber security: how Ukrainian businesses can protect themselves from attacks by Russian hackers during the war. Advice from IT experts]. Available at: https://uaspectr.com/2022/07/27/yak-ukrayinskomu-biznesu-zahystytysya-vid-atak-hakeriv/ (in Ukrainian)
Pro rishennja Rady nacionaljnoji bezpeky i oborony Ukrajiny vid 14 travnja 2021 roku «Pro Strateghiju kiberbezpeky Ukrajiny»: Ukaz Prezydenta Ukrajiny; Strateghija vid 26.08.2021 № 447/2021 [On the decision of the National Security and Defense Council of Ukraine dated May 14, 2021 "On the Cybersecurity Strategy of Ukraine": Decree of the President of Ukraine; Strategy dated August 26, 2021 № 447/2021]. Available at: https://zakon.rada.gov.ua/laws/show/447/2021#n12 (in Ukrainian)
Kiberataky mozhutj pryjty cherez postachaljnykiv. Jak zakhystytysja? [Cyberattacks can come through suppliers. How to protect yourself?]. Available at: https://delo.ua/telecom/kiberataki-mozut-priiti-cerez-postacalnikiv-yak-zaxistitisya-404662/ (in Ukrainian)
Kiberbezpeka biznesu v umovakh nestabiljnosti [Cybersecurity of business in conditions of instability]. Available at: https://www.pwc.com/ua/uk/publications/2022/cybersecurity-uncertainty-state.html (in Ukrainian)