PECULIARITIES OF THE IMPLEMENTATION OF THE INFORMATION SECURITY MANAGEMENT SYSTEM UNDER MARTIAL LAW CONDITIONS

Abstract

Due to the active conduct of information-psychological operations (IPSO) and the spread of destructive informational impacts by the aggressor state, rf, against our country, the issue of ensuring information security is becoming increasingly urgent. Ensuring the information system operates under optimal conditions for the functioning of information exchange processes in state and military management solely with a set of technical means is, at present, practically impossible.

Moreover, the challenge extends to ensuring the resilience of management processes related to actively countering military aggression by rf, as well as fully understanding the process of cybernetic-hybrid impact, where special IPSO are used against Ukraine, its military forces, and its civilian population.

These issues can be addressed through the implementation of an adaptive approach to the use of an effective Information Security Management System (ISMS) for critical information infrastructure objects in state and military-political administration.

This article identifies the key features of ISMS implementation and modern approa­ches to its development stages at critical information infrastructure objects, in state and military-political administration, and during the processing of information, the dissemination of which has a destructive impact on the country’s state system and citizens’ information security. Given the current realities in countering active military aggression and the need to build an effective information security management system, approaches based on DSTU ISO/IEC 27001:2015 "Information Technology. Protection Methods. Information Security Management Systems. Requirements" are discussed. The analysis reveals the interconnection of information security processes and subsystems, which are responsible for them, and the political, financial, and military resources required for their effective operation under martial law.

One of the most crucial and urgent areas of conflict in the military sphere is active information-psychological operations and various destructive strategies aimed at Ukraine's military-political infrastructure, including in cyberspace.

It is concluded that the creation and implementation of an effective ISMS will allow for a new level of quality in managing military-political processes under conditions of military aggression and counteracting IPSO by rf. This will reduce information and organisational threats, improve the controllability of operational management processes, and demonstrate the effectiveness and reliability of decision-making, enabling successful resistance to the aggressor's plans alongside leading NATO countries at the global international level.

Key words: military aggression, cyber security measures, information security, information and psychological operations, cyber security, critical information infrastruc­ture, security policy, ISMS policies and procedures, risk-oriented approach, information security management system, modern information and communication systems and tech­nologies, management decision.