PROTECTION OF INFORMATION AND FRAUD PREVENTION IN THE FIELD OF ACCOUNTING SUPPORT
Abstract
The article is devoted to the study of information security and fraud prevention in the field of accounting. To ensure information security of the enterprise, conditions must be created in which the use, loss or distortion of any information by employees or external persons will not lead to threats of business interruption. The issues of access to information in «BAS: Accounting» and definition of access group profiles have been studied. The classification of existing threats to accounting information is highlighted: artificial and natural; potential threats. It is suggested to use the following methods to protect databases: it is not desirable to install updates of the program on your own, download them from suspicious sites; it is recommended not to keep the accounting program on your own computer, it is better to use an online service that provides data protection and contains all the necessary updates. It is concluded that you should provide means to protect the accounting data on removable media: after removing the device (SSD or hard drive), you must lock it in a cabinet or better in a safe; external media - memory cards, flash drives, removable disks - must also be kept locked up; if you carry removable media, you should choose one in which the information is protected by a PIN or password; you can not leave electronic digital signature (EDS) in the card reader for a long time unattended. To avoid the risk of theft or failure of office equipment, it is recommended to use cloud services. They allow you to work with the program via the Internet, and besides there is no need to buy the program, it simply needs to be rented and connected via an encrypted channel. The basic rule of information protection is to limit the rights and opportunities of users, as well as control over them when using information systems, the less rights the user has when working with information system, the less chance of leakage or damage information by malice or negligence. Regarding the limitations of the study, it should be recognized that the study focused solely on information protection and the prevention of accounting fraud.
References
Ілляшенко К.В. Інформаційна безпека сучасного бухгалтерського обліку. Науковий вісник Міжнародного гуманітарного університету. 2019. Випуск 40. С. 179–183. URL: http://vestnik-econom.mgu.od.ua/journal/2019/40-2019/25.pdf
Попівняк Ю.М. Кібербезпека та захист бухгалтерських даних в умовах застосування новітніх інформаційних технологій. Бізнес Інформ. 2019. №8. С. 150–157. URL: https://www.business-inform.net/export_pdf/business-inform-2019-8_0-pages-150_157.pdf
Вітер С.А., Світлишин І.І. Захист облікової інформації та кібербезпека підприємства. Економіка і суспільство. 2017. Випуск 11. С. 497–502. URL: https://economyandsociety.in.ua/journals/11_ukr/80.pdf
Скрипник М.І., Григоревська О.О. Організація захисту облікової інформації в умовах забезпечення кібербезпеки. Наукові записки Національного університету «Острозька академія», серія «Економіка». 2020. №19(47). С. 95–102. DOI: https://doi.org/10.25264/2311-5149-2020-19(47)-95-102
Про рішення Ради національної безпеки і оборони України від 14 травня 2021 року «Про Стратегію кібербезпеки України»: Указ Президента України від 26 серпня 2021 року № 447/2021. Законодавство України / Верховна Рада України. URL: https://zakon.rada.gov.ua/laws/show/447/2021#Text
Illiashenko K.V. (2019). Informatsiina bezpeka suchasnoho bukhhalterskoho obliku [Information security of modern accounting]. Naukovyi visnyk Mizhnarodnoho humanitarnoho universytetu – Scientific Bulletin of the International Humanities University, 40, 179–183. Retrieved from: http://vestnik-econom.mgu.od.ua/journal/2019/40-2019/25.pdf (in Ukrainian)
Popivniak Yu.M. (2019). Kiberbezpeka ta zakhyst bukhhalterskykh danykh v umovakh zastosuvannia novitnikh informatsiinykh tekhnolohii [Cybersecurity and Protection of Accounting Data under Conditions of Modern Information Technology]. Biznes Inform – Business Inform, 8, 150–157. Retrieved from: https://www.business-inform.net/export_pdf/business-inform-2019-8_0-pages-150_157.pdf (in Ukrainian)
Viter S.A., Svitlyshyn I.I. (2017). Zakhyst oblikovoi informatsii ta kiberbezpeka pidpryiemstva [Protection of accounting information and cyber security of the enterprise]. Ekonomika i suspilstvo – Economy and society, 11, 497–502. Retrieved from: https://economyandsociety.in.ua/journals/11_ukr/80.pdf (in Ukrainian)
Skrypnyk M.I., Hryhorevska O.O. (2020). Orhanizatsiia zakhystu oblikovoi informatsii v umovakh zabezpechennia kiberbezpeky [Organization of accounting information protection in terms of cyber security]. Naukovi zapysky Natsionalnoho universytetu «Ostrozka akademiia – Scientific notes of the National University «Ostroh Academy», 19(47), 95–102. DOI: https://doi.org/10.25264/2311-5149-2020-19(47)-95-102 (in Ukrainian)
Prezydent Ukrainy (2021). Pro rishennia Rady natsionalnoi bezpeky i oborony Ukrainy vid 14 travnia 2021 roku «Pro Stratehiiu kiberbezpeky Ukrainy» [On the decision of the National Security and Defense Council of Ukraine of May 14, 2021 «On the Cyber Security Strategy of Ukraine»], 447/2021, August 26. Retrieved from: https://zakon.rada.gov.ua/laws/show/447/2021#Text (in Ukrainian)