Methodical aspects of modelling the information protection system in the organization

The proble m of infor mation s ecur it y of e nte r pr i s es and organiz ation s i sundoubtedly relevant, and if it is considered in the context of the protection ofcritical information infrastructure, it is extremely acute. This article is devotedto the modeling of the information system protection system of the organization,based on the principles of economic feasibility and reasonable sufficiency ofthe use of protection mechanisms. The article discusses the methodologicalposition of the modeling system for the protection of information circulatingin the information objects in the organization. Based on the position that theconstruction of information security systems is a very complex and expensiveprocess, it is recommended to assess the damage that the organization may sufferas a result of the implementation of the most likely threats.