ІНФОРМАЦІЙНА СИСТЕМА НОРМАТИВНОГО ЗАБЕЗПЕЧЕННЯ КІБЕРБЕЗПЕКИ ПІДПРИЄМСТВ

Now the situation has arisen, when a significant number of international standards have been developed and provided almost all areas of information and cyber security. But, at the same time, a very significant part of enterprises and organizations of almost all directions and industries do not meet the requirements of these standards, at least in Ukraine. Moreover, a very significant majority of managers of these enterprises do not know the content of these standards. A brief description of the management system of the information system based on international standards ISO/IEC 27000, requirements for its operation, is provided. The developed information system for regulatory support of cyber security of enterprises consists of a database that contains tables of cyber security terms and international standards for information security management. Information system software consists of an executable file written in the Python programming language with a graphical interface. In order to use the system, it needs to be run under a Windows operating system, but it can be easily adapted to any operating system where Python is installed. It is preferable that the computer is connected to the Internet. Each time the program is called, the database update is checked on the program web page and, if necessary, the Information System downloads the updated database to the client. The program administrator changes the information in the database. If the web page of the program is not achievable, the program works without updating. The use of the developed "Information system for regulatory support of cyber security of enterprises" should make it possible to increase legal literacy in the field of cyber security and information security among the management of enterprises and employees affected by it. And also, the implementation of effective management, which will have a qualitative impact on the final result of the enterprise. The system can be useful for teachers and students of educational institutions that are related to cyber security. [ABSTRACT FROM AUTHOR]