THE PLACE OF CYBERSECURITY MANAGEMENT IN MODERN MANAGEMENT SCIENCE AND PRACTICE
Abstract
The article delves into the transformative aspects of "cybersecurity management" within theoretical research realms, aiming to seamlessly integrate various methods, measures, and tools into the management practices of domestic enterprises and organizations. It emphasizes the importance of cybersecurity management in today's technologically advanced and risk-laden landscape, proposing the application of methodologies like OCTAVE or ISO 27005. The practical implications of the study are significant. At the operational level, cybersecurity management is not just about safeguarding information but also ensuring its integrity and availability. This involves a combination of sophisticated technical solutions and the cultivation of a well-informed and trained workforce. The strategic dimension of cybersecurity management underscores the establishment of a robust organizational culture. This culture should prioritize security within the cyber environment, underlining its critical role in the overall health and safety of an organization. The article highlights the scientific novelty of the topic in the context of a rapidly evolving technological environment where risks and uncertainties are increasingly challenging to manage. It posits the need for developing new risk management strategies, which are adaptable to emerging threats and opportunities, and identifying effective decision-making criteria to handle these risks. From a practical standpoint, the significance of the article lies in its advocacy for the implementation of effective cybersecurity management practices in organizations. It supports endeavors to fortify security in the digital world, emphasizing the need for a comprehensive and interdisciplinary approach to cybersecurity management. This approach is vital given the multidimensional nature of cybersecurity, intertwining technical, human, and strategic elements. Furthermore, the article sheds light on the practical applications of cybersecurity management principles at the operational level, such as safeguarding the protection, integrity, and availability of information. It also illustrates how cybersecurity management evolves into a strategic cornerstone of organizational culture, addressing various security issues in the cyber environment. In summary, the article offers a thorough examination of cybersecurity management from both theoretical and practical perspectives. It proposes integrating specific methodologies into management practices, enhancing the operational and strategic facets of cybersecurity within organizations. The article underscores the necessity of developing new strategies and decision-making criteria in the face of ever-evolving technological risks and uncertainties, advocating for a holistic and interdisciplinary approach to managing cybersecurity. This comprehensive view is pivotal for fostering an organizational culture that prioritizes cybersecurity, ultimately contributing to the resilience and security of the digital infrastructure in modern enterprises and organizations.
References
Штангрет А.М., Котляревський Я.В., Караїм М.М. Економічна безпека підприємства в умовах антикризового управління: концептуальне визначення та механізм забезпечення: монографія. Львів : Укр. акад. друкарства, 2012. 288 с.
Барометр ризиків Allianz. 2022. URL: https://www.agcs.allianz.com/news-and-insights/reports/allianz-risk-barometer.html
Діордіца І. Поняття і зміст кіберзагроз на сучасному етапі. Адміністративне право і процес. 2017. № 4. С. 99–107.
Панченко В.А. Менеджмент інформаційної безпеки комерційного підприємства. URL: http://economics.kntu.kr.ua/pdf/3(36)/23.pdf
Довгань О.Д., Доронін І. М. Ескалація кіберзагроз національним інтересам України та правові аспекти кіберзахисту: монографія. Київ : Видавничий дім «АртЕк», 2017. 107 с.
Половенко Л., Мерінова С. Виявлення ознак соціальної інженерії та технологія протидії соціальним хакерам на підприємстві. Підприємництво та інновації, 2019. № 10, С. 183–187.
Краус К.М., Краус Н.М., Штепа О.В. Цифрова трансформація кібербезпеки на мікрорівні в умовах воєнного стану. 2022. URL: https://elibrary.kubg.edu.ua/id/eprint/42325/1/Kraus_Tsyfrova_transformatsiia_kiberbezpeky_2022.pdf
Євсюкова О.В. Особливості підготовки фахівців у сфері кібербезпеки: сучасні виклики та перспективи. 2021. URL: http://www.dy.nayka.com.ua/pdf/2_2021/4.pdf
Stangret A. (2012) Ekonomichna bezpeka pidpryiemstva v umovakh antykryzovoho upravlinnia: kontseptualne vyznachennia ta mekhanizm zabezpechennia [Economic Security of an Enterprise in the Context of Crisis Management: Conceptual Definition and Mechanism of Ensuring]: monograph. Lviv: Ukrainian Academy of Printing, 288 p. (in Ukrainian)
Barometr ryzykiv Allianz [The Allianz risk barometer]. Available at: https://www.agcs.allianz.com/news-and-insights/reports/allianz-risk-barometer.html (in Ukrainian)
Diorditsa I. (2017) Poniattia i zmist kiberzahroz na suchasnomu etapi. [The Concept and Content of Cyber Threats at the Present Stage]. Administrative law and process, no. 4, pp. 99–107. (in Ukrainian)
Panchenko V. Menedzhment informatsiinoi bezpeky komertsiinoho pidpryiemstva [Information security management of a commercial enterprise.]. DOI: https://doi.org/10.32515/2663-1636.2019.3(36).219-228 (in Ukrainian)
Dovhan O., Doronin I. (2017) Eskalatsiia kiberzahroz natsionalnym interesam Ukrainy ta pravovi aspekty kiberzakhystu [Escalation of cyber threats to Ukraine's national interests and legal aspects of cyber defence]: monograph. Kyiv: ArtEk Publishing House, 107 p. (in Ukrainian)
Polovenko L., Merinova S. (2019) Vyiavlennia oznak sotsialnoi inzhenerii ta tekhnolohiia protydii sotsialnym khakeram na pidpryiemstvi [Identification of signs of social engineering and technology for counteracting social hackers at the enterprise]. Підприємництво та інновації, no. 10, pp. 183–187. (in Ukrainian)
Kraus K., Kraus N., Shtepa O. (2022) Tsyfrova transformatsiia kiberbezpeky na mikrorivni v umovakh voiennoho stanu [Digital transformation of cybersecurity at the micro level under martial law]. Available at: http://www.dy.nayka.com.ua/pdf/2_2021/4.pdf (in Ukrainian)
Yevsiukova O. (2021) Osoblyvosti pidhotovky fakhivtsiv u sferi kiberbezpeky: suchasni vyklyky ta perspektyvy [Peculiarities of training specialists in the field of cybersecurity: current challenges and prospects]. Available at: http://www.dy.nayka.com.ua/pdf/2_2021/4.pdf (in Ukrainian)
