Abstract:

An analysis of contemporary publications on information security demonstrates a clear increase in awareness among information protection professionals that traditional technical aspects of security must coexist with behavioral aspects describing human behavior in the process of information processing and organizational-procedural aspects that determine the ways in which modern security systems are created. What can also be seen is a clear increase in interest in information security factors that involve human behavior. However, do managers of business entities responsible for the security of intangible resources share this approach of information protection specialists and are they aware of the importance of the human factor? The aim of this article is to present a contemporary, multi-faceted approach to information resource security that is shaped directly by the methods of attacks on digital information resources. The article describes the most important types of safeguards in business entities, makes an attempt to synthetically describe individual areas of information security and to answer the question of what actions should be taken to minimize the negative impact of the so-called "human factor." Some of the issues analyzed in the article have been supplemented by the results of research conducted by the largest intelligence companies in the world. The empirical part of the article presents original research conducted in medium and large business organizations in order to show the current status of the security systems in selected areas of business operations.