Digitalization and Cyber Risks

Digitalization, considered in a broad sense as the most important modern trend of social development, is generally accompanied not only by positive consequences for the economy and society, but also by challenges, threats, as well as negative consequences of the implementation of these threats. Digitalization, considered in a narrow sense as the transformation of information of any kind into its digital form and involving the use of digital information, can also be described by challenges, threats, negative consequences and risks. Among the latter, a significant role is played by the risks of violating the security of digital information — cyber risks. Since they can have a negative impact on digitalization, considered both in a broad and narrow sense, there is a problem of allocating cyber risks and managing them in order to reduce possible losses and damage caused by the implementation of these cyber risks. The article defines the interrelationships of the concepts of digitalization, challenge, threat, negative consequence and risk; identifies the role and justifies the high importance of a cyber call as a requirement to ensure the security of digital information; determines the factors of influence on cyber risks; suggests a variant of building a cyber risk management program, the implementation of which will contribute to reducing the possible negative consequences of digitalization caused by a violation of the security of digital information.

1. NIST Interagency or Internal Report 7298 : Glossary of Key Information Security Terms / Richard L. Kissel, ed., Computer Security Division, Information Technology Laboratory. Rev. 2. Gaithersburg, MD, USA : National Institute of Standards and Technology, 2013. 222 p.

2. NIST Special Publication 800-14 : Generally Accepted Principles and Practices for Securing Information Technology Systems. Gaithersburg, MD, USA : National Institute of Standards and Technology, 1996. 61 p.

3. NIST Special Publication 800-160 : Systems Security Engineering: Considerations for a Multidisciplinary Approach in the Engineering of Trustworthy Secure Systems. Gaithersburg, MD, USA: National Institute of Standards and Technology, 2016. Vol. 1. 260 p