MODELS AND METHODS OF INFORMATION SECURITY ASSESSMENT

Abstract

Annotation. Information security and information security is an urgent area with a comprehensive interdisciplinary connection. This article discusses models and methods for assessing information security, highlights security issues and describes security controls, discusses steps that include data collection, risk impact measurement criteria, identification of a problem area, relative threat assessment and assessment that determines compliance with cybersecurity requirements, since all organizations store a lot of data that they contain information about manufactured products, business processes and customers, accordingly, there is a need to protect and ensure data security. The purpose of this study is to study approaches for assessing information security and information security management. Analyzing the security of information, the most important aspects are the identification of threats and attacks on the company's systems. Accordingly, organizations have an increasing need to assess security systems and their compliance with requirements, minimize the level of risk, thereby ensuring the continuity of production.