FORMATION OF THE MODEL FOR PROVIDING INFORMATION PROTECTION AT THE ENTERPRISE

Information security of an enterprise is a functional element of the system for ensuring its strategic development. Its main task is to ensure the stability of the enterprise's existence in the present and the prospects for its sustainable development in the future. The integrated system for ensuring the information security of enterprises takes into account modern legal and organizational and managerial measures, as well as software and hardware tools for countering external and internal threats, which ensures the state of information security and the prospects for the development of information technologies. The organizational level of information protection includes organizational regulation, organizational regulation and organizational instruction and ensures the organization of security, regime, work with personnel, with documents, standards for the use of technical security means and procedures for information and analytical activities of the enterprise to identify threats. The organizational aspect of ensuring the information security of an enterprise is one of its most important elements, since the effectiveness of all activities to support the information security system at the proper level largely depends on the actions taken for implementation. The main task is to characterize the information security system at the enterprise. The research of the information security system at the enterprise was carried out. It has been determined that the correct solution to the issue of creating information security bodies will help accelerate the integrated implementation and maintenance of an integral information security system, coordinate legal, administrative, organizational, technological, scientific, technical and physical measures to protect information. It is given that information security programs should take into account how an organization and its people, processes and technologies interact; and how organizational governance, culture, human factors, and architecture support or hinder an enterprise's ability to protect information and manage risk. It is highlighted that information security managers should do their best to create programs that meet the goals and priorities of the enterprise, benefit the enterprise and support the ability of management to innovate while controlling risks.