PERSONNEL SECURITY AS THE BASIS OF ENTERPRISE CYBERSECURITY IN THE CONTEXT OF DIGITALIZATION
DOI: 10.31673/2415-8089.2024.046569
DOI:
https://doi.org/10.31673/2415-8089.2024.046569Abstract
In today's business environment, characterized by rapid digitalization and increasing complexity
of cyber threats, the issue of ensuring information security of an enterprise is becoming critical. This
problem is especially relevant in the context of the human factor, which, according to experts, is the
cause of most successful cyberattacks. Traditional approaches to ensuring cybersecurity, which focus mainly on the technical aspects of protection, are not effective enough without taking into account
the human component.
The article presents a comprehensive study of the relationship between human security and the
effectiveness of an enterprise's cyber defense system. The article considers the peculiarities of
forming a cybersecurity culture in an organization, mechanisms for raising staff awareness of modern
cyber threats, and methods of counteracting social engineering. An innovative approach to the
creation of an integrated cybersecurity management system is proposed, which takes into account
both technological and human aspects of information assets protection.
Particular attention is paid to the problems of ensuring cybersecurity in the conditions of remote
work and hybrid formats of work organization, which create additional challenges for information
security systems. The psychological aspects of the formation of safe behavior of employees in
cyberspace and methods of overcoming “security fatigue” are investigated. The issues of economic
efficiency of investments in the development of cybersecurity systems and methods of assessing their
impact on the overall security of the enterprise are considered.
The scientific novelty of the study is the development of a methodological approach to the
integration of personnel security management systems and cybersecurity, which allows creating a
single enterprise security loop. The practical significance of the work is determined by the possibility
of applying the proposed solutions to increase the level of cyber resilience of organizations in various
sectors of the economy and scales of activity.
Keywords: enterprise cybersecurity, personnel security, personnel management, information
security, cyber threats, human factor, cybersecurity culture, social engineering, remote work,
cybersecurity investments.
