INFORMATICS SECURITY ASSESSMENT IN THE REPUBLIC OF MOLDOVA

Abstract

The topicality of systemic research on informatics (IT) security in the Republic of Moldova is argued. Based on international practices, a set of 24 indicators (aspects) is defined for the incipient assessment of the state of informatics security in enterprises/organizations/institutions (EOIs). Through an online survey, the respective information is collected, EOIs being differentiated into 5 categories according to the number of employees, within each of which are distinguished ICT-EOIs and non-ICT-EOIs. The weighted average value of the percentage of EOIs (%EOI), of the percentage of ICT-EOIs (%ICT-EOIs) and of the percentage of non-ICT-EOIs (%non-ICT-EOIs) on 23 aspects of informatics security are: overall for EOIs - 71.7%, for ICT-EOIs - 73.3%, and for non-ICT-EOIs - 66.1%. The state of IT security of ICT-EOIs is better than that of non-ICT-EOIs. The biggest difference %ICT-EOIs – %non-ICT-EOIs is with reporting the IT security vulnerabilities of the implemented software, with performing the IT security audit of new IT applications/systems before implementation and with the implementing of an internal IT security policy. The dependence of the average value (on 23 aspects) of %EOIs on the number of employees is increasing. Moreover, the percentage of EOIs with 100% IT security performance for EOIs with over 500 employees is about twice as high (91.7%) as that for EOIs with up to 10 employees inclusive (43.8%).