Development of cybersecurity mechanisms at pharmaceutical companies in kazakhstan and benefits from their implementation (on the example of SK-Pharmacy LLP)

This study is carried out by us in order to determine effective mechanisms for using cyber security to improve the distribution system in SK-Pharmacy LLP. It has been established that a more effective cyber security system is required to ensure the effectiveness of the unified distribution system in the Republic of Kazakhstan. It is proposed to supplement the system with SIEM with a vulnerability scanner, as well as to develop a strategy for the development of cybersecurity. The strategy should use a more promising cyber security mechanism. The main priorities of an effective cybersecurity mechanism are identified: preserving enterprise assets, reducing risks, establishing an effective cyber risk management system, and improving security controls and processes continuously. Mechanisms for ensuring cyber resilience, such as: support of top management, the creation of structural unit systems and a risk management system, continuous and comprehensive monitoring, an independent audit system, an assessment of the level of maturity and a management system in the field of cyber resilience should help the enterprise to solve all the tasks set by the strategy. And also to get benefits when using new digital technologies, in the form of a balance of risk and profitability, since it is they that allow, in modern conditions, to level the consequences of cyber threats.

1. Rukovodjashhie ukazanija po kiberbezopasnosti v kontekste ISO 27032. https://s3r.ru/wp-content/uploads/2014/03/iso27032.pdf

2. Novyj podhod k obespecheniju kiberbezopasnosti v setevom mire. Issledovanie McKinsey, 2018. https://informburo.kz/stati/novyy-podhod-k-obespecheniyu-kiberbezopasnosti-v-setevom-mire-issledovanie-mckinsey.html

3. Gorbunov Ju.V. O ponjatii «mehanizm» v jekonomicheskih naukah. – Barnaul. – S. 16-21 4Jenciklopedicheskij slovar': sovremennaja versija / F. A. Brokgauz, I. A. Efron. – M. :Jeksmo, 2002. – 672 s. 5Rajzberg B. A. Sovremennyj jekonomicheskij slovar' / Rajzberg B.A., Lozovskij L. Sh., Starodubceva E. B. - 4-e izd. - M.: Infra-M, 2004. – 478 s.

4. Teorija sistem i sistemnyj analiz v upravlenii organizacijami: spravochnik: uchebnoe posobie / pod red. A. N. Volkovoj i A. A. Emel'janova. M. : Finansy i statistika, 2006. – 848 s.

5. Kiberbezopasnost' (2017 – 2018): cifry, fakty, prognozy https://www.ptsecurity.com/ru-ru/research/analytics/cybersecurity-2017-2018/

6. Shema postroenija strategii kiberbezopasnosti KPMG https://www.kbtu.kz/images/KPMG.pdf

7. BCP i DRP. Raznica inogda ne ochevidna – https://habr.com/ru/post/312518/

8. Kak razrabotat' plan avarijnogo vosstanovlenija (Disaster Recovery Plan) https://mcs.mail.ru/blog/plan-avariynogo-vosstanovleniya-disaster-recovery-plan