INFORMATION SYSTEMS SECURITY IN THE AGE OF ADVANCED THREATS: PREVENTION, DETECTION AND OPERATIONAL RESPONSE STRATEGIES
INFORMATION SYSTEMS SECURITY IN THE AGE OF ADVANCED THREATS: PREVENTION, DETECTION AND OPERATIONAL RESPONSE STRATEGIES

Author(s): George-Valentin BAN
Subject(s): Politics / Political Sciences, Politics, Security and defense
Published by: Carol I National Defence University Publishing House
Keywords: information systems; security policies; hardening
Summary/Abstract: The security of information systems is an essential component of the functioning of modern organizations, in a context marked by the exponential growth of cyber-attacks and the complexity of digital infrastructures. This paper explores the fundamental concepts of cyber vulnerabilities, the root causes of security breaches, and prevention methods applicable to private, government and military organizations. Major cybersecurity incidents such as the attack on the SolarWinds platform and the crisis caused by the CrowdStrike software update failure are analyzed, highlighting the global impact of such events on critical infrastructures. It also emphasizes the importance of transferring best practices from the private to the public sector by adopting international standards such as ISO/IEC 27001, NIST Cybersecurity Framework, GDPR or NIS2. Finally, concrete solutions for hardening systems are proposed, including the implementation of proactive security policies, resilient architectures and automated scripts for hardening server configurations. The study contributes to the understanding of the need for an integrated strategic framework for information security tailored to the operational requirements of the digital era.

• Details
• Contents