PROBLEMS OF INFORMATION SECURITY IN PROJECT MANAGEMENT
Abstract
The article considers the main problems of ensuring information security in the context of project management. The authors analyze today's challenges related to cyber threats, disinformation and cyber attacks on critical infrastructure. Particular attention is paid to issues of confidentiality, integrity and availability of information in the context of the growing role of technologies and information networks. The proposed areas of problem solving are based on the creation of effective cyber protection mechanisms, the improvement of cyber literacy of the project team and the development of cooperation between project participants, the customer, and partners. The article emphasizes the importance of a systematic approach to ensuring information security and the active role of project participants in the development and implementation of strategic measures in this area. It is concluded that cybersecurity in project management encompasses data protection, access control, network security, vulnerability management, incident response, and compliance with standards such as ISO 27001. In summary, cybersecurity in project management encompasses data protection, access control, network security, vulnerability management, incident response and compliance with standards such as ISO 27001. Effective cyber security includes the implementation of practices, protocols and measures to protect data, systems and assets from cyber threats. Aspects such as data protection, access control, network security, vulnerability management and incident response are discussed. The importance of the ISO 27001 standard for ensuring information security during the entire project life cycle is emphasized. Implementation of the standard helps to protect documents, databases and other assets of the project from threats. The article emphasizes the need to integrate information security and privacy into the project management methodology, which allows for effective identification, assessment and management of information security risks in any type of project. Information security and privacy should be integrated into the project management methodology to identify, assess and manage risks at all stages of the project.
References
Захаренко К. Політичні інститути інформаційної безпеки України: трансформація, модернізація, розвиток. Київ : Вид-во НПУ імені М.П. Драгоманова, 2017. 389 с.
Лазученков Д., Тоцький Р. Оцінка відповідності та впровадження системи управління інформаційною безпекою за стандартом ISO 27001. URL: https://www.ey.com/uk_ua/consulting/compliance-assessment-and-implementation-of-the-information-secu (дата звернення: 18.09.2024)
Редзюк В., Редзюк Н. Сучасні проблеми інформаційної безпеки України та напрями їх вирішення. Публічне управління: концепції, парадигма, розвиток, удосконалення. 2023. № 3. С. 59–65. DOI: https://doi.org/10.31470/2786-6246-2023-3-59-65
Форос А.В. Інформаційна безпека як складова національної безпеки України. Правова держава. 2009. № 11. С. 222–226.
Cybersecurity in Project Management With Practical Examples. URL: https://bakkah.com/knowledge-center/cybersecurity-in-pm (дата звернення: 16.09.2024)
How to manage security in project management according to ISO 27001 A.5.8. URL: https://advisera.com/27001academy/how-to-manage-information-security-according-to-iso-27001/ (дата звернення: 16.09.2024)
ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection – Information security management systems – Requirements. URL: https://www.iso.org/en/standard/27001#promo (дата звернення: 16.09.2024)
Zakharenko K. (2017) Politychni instytuty informatsiinoi bezpeky Ukrainy: transformatsiia, modernizatsiia, rozvytok [Political institutions of information security of Ukraine: transformation, modernization, development]. Kyiv: Vyd-vo NPU imeni M.P. Drahomanova. 389 p. (in Ukrainian)
Lazuchenkov D., Totskyi R. Otsinka vidpovidnosti ta vprovadzhennia systemy upravlinnia informatsiinoiu bezpekoiu za standartom ISO 27001. [Compliance assessment and implementation of the information security management system according to the ISO 27001 standard]. Available at: https://www.ey.com/uk_ua/consulting/compliance-assessment-and-implementation-of-the-information-secu (accessed: 18.08.2024)
Redziuk, V., & Redziuk, N. (2023). Suchasni problemy informatsiinoi bezpeky Ukrainy ta napriamy yikh vyrishennia. [Modern problems of information security of Ukraine and ways to solve them]. Publichne upravlinnia: kontseptsii, paradyhma, rozvytok, udoskonalennia – Public administration: concepts, paradigm, development, improvement, (3), 59–65. DOI: https://doi.org/10.31470/2786-6246-2023-3-59-65
Foros A.V. (2009) Informatsiina bezpeka yak skladova natsionalnoi bezpeky Ukrainy [Information security as a component of national security of Ukraine]. Pravova derzhava – The Rule of Law, 11, 222–226.
Cybersecurity in Project Management With Practical Examples. Available at: https://bakkah.com/knowledge-center/cybersecurity-in-pm (accessed: 16.09.2024)
How to manage security in project management according to ISO 27001 A.5.8. Available at: https://advisera.com/27001academy/how-to-manage-information-security-according-to-iso-27001/ (accessed: 16.08.2024)
ISO/IEC 27001:2022 Information security, cybersecurity and privacy protection – Information security management systems – Requirements. Available at: https://www.iso.org/en/standard/27001#promo (accessed: 16.08.2024)
This work is licensed under a Creative Commons Attribution 4.0 International License.
