Управление информационными рисками объектов критической информационной инфраструктуры Российской Федерации

In this paper we consider the problem of effective information risk management objects of the critical information infrastructure of the Russian, using models and methods of the theory of organizational sys­tems control. The analysis models of information threats and risks to organizational systems with different structures and properties. It is shown that the proposed management information risk set consisting of motivational mechanisms, institutional and information management, is complete in the sense that it com­pletely covers as many classes of potential information threats and the set of all types of countermeasures. In this case, a set of mechanisms for motivational mechanisms of information risk management organizational systems, including planning tools (resource allocation), incentives and insurance is a necessary and sufficient minimum