About features of the system and process approaches creating ІТ projects in the field of information security

Yuliya Kozhedub

Abstract


The article presents a summary theoretical study known scientific approaches to the creation of IT projects in the field of information security, which they introduce for information security systems. The study also was based on international instruments that they used experts in the field of information security. Generally accepted international practice of standardization and scientific approaches used during the creation of IT projects in the field of information security are the main factors that meet the requirements for protection of vital interests of man and citizen, society and the state, which provided for the sustainable development of society.

Keywords: information security, information, IT projects, international standards, process approach, system approach.


References


Chukhno, A.A. (2010), Institutional and Information economy. Technology modes : the nature and of especially the development [Instytutsionalno-informatsiina ekonomika. Tekhnolohichni uklady : sutnist ta osoblyvosti rozvytku], available at : http://pidruchniki.ws/ 12631113/ekonomika/tehnologichni_ukladi_sutnist_osoblivosti_rozvitkuа (accessed 22 January 2015).

International Organization for Standardization (2012), ISO 21500 : 2012, Guidance on project management, available at : https://www.iso.org/obp/ui/#iso:std:iso:21500:ed-1:v1:en (accessed 08 January 2015).

International Organization for Standardization (2014), ISO/IEC 27000 : 2014, Information technology. Security techniques. Information security management systems. Overview and vocabulary, available at : https://www.iso.org/obp/ui/#iso:std:iso-iec:27000:ed-3:v1:en (accessed 03 February 2015).

Legislature, State Service for Special Communications and Information Protection of Ukraine, available at : http://www.dstszi.gov.ua (accessed 01 Marсh 2015).

On State Service of Special Communication and Information Security of Ukraine, available at : http://zakon3.rada.gov.ua/laws/show/3475-15 (accessed 21 February 2015).

State Committee for Standardization (1996), DSTU 3396.0-96, Data protection. Technical protection of information. The main provisions [Zakhyst informatsii. Tekhnichnyi zakhyst informatsii. Osnovni polozhennia], Kiev, 6 p.

State Committee for Standardization (1996), DSTU 3396.1-96, Data protection. Technical protection of information. The conduct of work [Zakhyst informatsii. Tekhnichnyi zakhyst informatsii. Poriadok provedennia robit], Kiev, 7 p.

On National Security of Ukraine, available at : http://zakon5.rada.gov.ua/laws/show/964-15 (accessed 21 February 2015).

State Committee for Standardization (2009), DSTU ISO 9001-2008, Quality Management System. Requirements [Systema upravlinnia yakistiu. Vymohy], Kiev, 26 p.

The process, system and situational approaches in management [Protsesnyi, systemnyi i sytuatsiinyi pidkhody v upravlinni], available at : http://ru.osvita.ua/vnz/reports/management/14996/ (accessed 11 January 2015).

Development and implementation of quality management [Rozrobka ta vprovadzhennia systemy upravlinnia yakistiu], available at : http://www.mil.gov.ua/index/index.php?part= quality_management_system〈=ua (accessed 17 January 2015).

Peregudov, F.I. (1976), Bases of system approach in their applications to the appendix of territorial automated control systems, TGU, Tomsk, 244 p.

Trusted Computer System Evaluation Criteria : «Orange Book», available at : http://csrc.nist.gov/publications/history/dod85.pdf (accessed 27 January 2015).




ISSN 2411-1031 (Print), ISSN 2518-1033 (Online)