Контрастність
Шрифт
State examination of CIPS – a new direction of work for the “INFOTECH”

State examination of CIPS – a new direction of work for the “INFOTECH”

By order of the State Service of Special Communications and Information Protection of Ukraine, dated April 22, 2020, “INFOTECH” was granted a license to conduct activities in the field of technical protection of information, namely: assessment of the safety of the information that is not a State secret.

The development of telecommunications within the public and private enterprises influences the increase in the use of information and telecommunications systems for processing information with limited access. The laws of Ukraine require such information to be protected, including confidential (along with personal data) and official information. According to Article 8 of the Law of Ukraine “On Information Security in Information and Communication Systems”:

“national information resources or information with limited access, the security requirement of which is established by law, must be processed by the system that uses a comprehensive system of information protection, with its compliance confirmed. Confirmation of conformity is carried out based on the results of the State examination conducted in the manner prescribed by law.”

Nevertheless, the issue concerning the safety of personal data remains relevant not only because of the regulatory requirements but also due to the wishes of everyone who grants the right to process their personal information to be confident of the appropriate level of protection of this information. Practice demonstrates that an increase in the volume of information assets inside a network leads to an increased number of incidents (attempts) to seize it without authorization.

Currently, “INFOTECH” is prepared to offer its customers services of development and implementation of a comprehensive information security system of classes “1”, “2” and “3” information and telecommunications systems, including automated systems designed to host and publish the contents of web pages. The company also provides services of assessing the security of information in the information and telecommunications systems by conducting a State examination to confirm the compliance of the information security system integrated into the ITS with the regulatory requirements towards the TPI. This separate area of activity will focus on the examination of the software that implements the TPI functions and/or assessment of the state of information security.

Based on the results of the State examination of CIPS, guided by the requirements imposed by the current legislation and regulations on the safety of information, the client receives a certificate of compliance. This document, registered by the Administration of the State Service of Special Communications and Information Protection of Ukraine, confirms the client ITS compliance with CIPS and is used to transfer the developed CIPS in the ITS into operation.

Commenting on the new direction of work, the information security professional from the “INFOTECH”, Oleg Shemetov, notes:
“Timely and skillfully conducted works of the technical protection of information help avoid the majority of issues associated with cybersecurity, including the increasing number of mass cyber-attacks on the State digital information resources and its critical infrastructure.”

For the detailed description of these services, see the “Services” section.