DEVELOPMENT OF EMPLOYEE COMPETENCIES IN INFORMATION SECURITY TO REDUCE THE RISKS OF INTERNAL THREATS
Authors:
1.
Tambov state technical university
(institute of informatics and information technologies, director)
Russian Federation
Russian Federation
2.
Russian technological university MIREA
(Institute of cybersecurity and digital technologies, associate professor of the department of KB-1 «Information protection»)
Russian Federation
Russian Federation
3.
Tambov State Technical University
Russian Federation
Russian Federation
Type:
Сonference article
Published:
14.04.2025
Subject area:
004.5
Language:
Russian
Keywords:
information security, employee training, human factor, internal threats, awareness raising
Abstract (English):
In today's digital age, information technology plays a crucial role in all aspects of business operations. As a result, information security has become an essential component for protecting data and ensuring the stability of businesses. Information security risks are not only associated with external threats but also with human error within organizations. Training employees in information security fundamentals is a vital strategy to minimize potential risks and prevent security incidents caused by unintentional or erroneous actions. This article discusses methods for training and educating employees on information security principles, as well as the impact of these efforts on reducing internal risks to organizations.
In today's digital age, information technology plays a crucial role in all aspects of business operations. As a result, information security has become an essential component for protecting data and ensuring the stability of businesses. Information security risks are not only associated with external threats but also with human error within organizations. Training employees in information security fundamentals is a vital strategy to minimize potential risks and prevent security incidents caused by unintentional or erroneous actions. This article discusses methods for training and educating employees on information security principles, as well as the impact of these efforts on reducing internal risks to organizations.
Keywords:
information security, employee training, human factor, internal threats, awareness raising
information security, employee training, human factor, internal threats, awareness raising
1. Vasil'kov A. V. Bezopasnost' i upravlenie dostupom v informacionnyh sistemah / A. V. Vasil'kov. – Moskva: FORUM: INFRA-M, 2013. – 368 s.
2. Zhigulin G. P. Organizacionnoe i pravovoe obespechenie informacionnoy bezopasnosti / G. P. Zhigulin. – Sankt-Peterburg: SPbNIUITMO, 2014. – 173 s. EDN: https://elibrary.ru/ZUZFCR
3. Malyuk A. A., Pazizin S. V., Pogozhin N. S. Vvedenie v zaschitu informacii v avtomatizirovannyh sistemah. – Moskva: Goryachaya liniya – Telekom, 2001. – 148 s.
4. Mel'nikov V. V. Bezopasnost' informacii v avtomatizirovannyh sistemah / V. V. Mel'nikov. – Moskva: Finansy i statistika, 2003. – 368 s. EDN: https://elibrary.ru/QMMKSV
