Legal regulation of providing information security of industrial enterprises in the Russian Federation

The article is devoted to the legal regulation of ensuring information security of industrial enterprises. This is especially true for the Chelyabinsk region as an industrial region, on the territory of which objects of critical information infrastructure are located. Information security, being a dynamic component of Industry 4.0, requires not only the technical equipment of an industrial enterprise to detect attacks and predict possible threats, but also appropriate legal instruments to implement security measures. A detailed analysis of the normative legal acts establishing the basis for ensuring information security in the industrial sphere is carried out. It is concluded that it is necessary to strengthen local regulation with internal instructions for identifying threats and eliminating the consequences of attacks.