Удосконалення комунікаційних процесів на підприємстві у контексті зміцнення інформаційної безпеки

Abstract

Розглянуто елементи комунікаційного процесу на підприємстві з погляду інформаційної безпеки. Вказано на аспекти запровадження елементів сучасних інформаційних технологій у процес комунікації, котрі можуть і поліпшити рівень безпеки, і спричиняти певні ризики. Розроблено й запропоновано загальні принципи, дотримання яких сприяє інформаційній безпеці процесу комунікації на підприємстві. Водночас безпеку розуміємо як захист, якість та актуальність важливої інформації. The mechanism of communication process and information security at an enterprise is considered. The theoretical aspects of the communications at the enterprise are based on the variety of its form and the relation of organizational and information structures: most activities have underlying links via information processes. Thus information security of communication process has a signifcant impact on the information security of the enterprise as a whole. In modern conditions and circumstances, the information security of the enterprise is largely reduced to cybersecurity and suffers from most threats of the latter. However, the human factor is responsible for most of the real facts of inflicting harm due to information security breaches. Thus, traditional mechanisms of privacy and confdentiality ensuring need to be adapted to new realities. New opportunities also set new requirements for understanding the very concept of information security: information must not only be protected but also timely and accurate as far as it is possible to be provided with modern telecommunication systems and information technologies: information security is a system of information protection of the enterprise – protection against theft, delayed and inaccurate providing of essential information to the recipient inside the enterprise or outside it. There are proposed and justifed four principles necessary but not sufcient to ensure efcient mechanism of information security regarding communication process at small to medium enterprises. These include information awareness of staff even if they are not advanced with information technologies, traditional methods of protection against cyber threats such as passwords and encryption, control over information flows and the infrastructure that provides them, reliable cooperation and protection of remote access. These principles should be followed by managers at all levels.