Requirements for the selection of the head of the information security management system
Abstract. The article considers the issue of forming requirements for the selection of the head of the information security management system. The authors note that for many years, the problems of information security management of business entities have not been given enough attention - they have been ignored either completely or sufficiently. However, considering the work of Ukrainian scientists on information security management, the authors of the article concluded that the situation with information security management is gradually changing. The danger of outside interference with the possibility of misuse of information with limited access is the basis for ensuring the protection of information – measures and solutions that lead to full-fledged standardized work of business entities in modern conditions. The authors of the article emphasize that the effectiveness of the information security system depends entirely on management decisions in the information security management system of modern enterprises, the quality and effectiveness of which depends entirely on its head. To ensure the process of selecting candidates for the position of head of the information security management system, it is proposed to divide the selection process into specific stages and outline the relevant requirements for the results at each stage of selection. At the first stage, it is proposed to test candidates, however, the authors emphasize that the test results can not be the main factor in deciding whether a candidate is suitable for this vacancy, but are aids to identify certain abilities. Therefore, at the second stage of the selection of requirements for the selection of the head of the information security management system, it is proposed to obtain reliable data on the availability of the candidate's certificates in the field of information security and information technology. The authors of the article analyzed a large number of the above certificates, the presence of which the candidate indicates a desire for self-improvement and maintenance of professional knowledge and skills at a high level in accordance with today's requirements.
The authors of the article concluded that adequate, appropriate and timely requirements for the selection of the head of the information security management system will facilitate the selection of an effective manager and professional in the field of information security and information technology. This is the approach that will provide businesses today with sustainable development and competitive advantage in a turbulent environment.
Key words: information security, information security management system, selection of the head, testing, certificate.