Methodology of Creation and Structure of the Corporate Information Security Unit

The problems of ensuring the security of information resources in the Republic of Belarus are considered. The necessity of application is determined and the types of information security units to ensure the protection of information resources are considered. The basic principles of creating a corporate-level information security unit are highlighted. The tasks and the main composition of the corporate information security unit are determined, and the methodology for calculating its structure is proposed. The load on analysts of the first and second levels from the team of the corporate information security unit was calculated. The ratio of the number of analysts of the first and second levels in the team is calculated and the sizes of the protected information resources is determined with the help of the corporate-level information security unit. The structure of the corporate information security unit is proposed and the modes of its operation are considered.