Development of a software complex for evaluating information security risks of an automated process control system

In today’s world, where information technology is an integral part of business processes, information security is becoming increasingly important. This is especially true for process control systems, which play a special role in production and service delivery. IS risks in such systems can lead to serious consequences, including loss of confidentiality, integrity, and availability of data, as well as possible financial and reputational losses.To mitigate IS risks, specialized software packages are used to help assess and manage risks. The results of work in the field of protection for automated process control systems are presented. The architecture and functions of automated process control systems affecting their security have been defined. Information security threats to automated process control systems have been examined. A security threat model for automated process control systems has been provided. A functional model of a software complex for assessing the risk of information security in automated process control systems is presented. The software complex for assessing the risk of information security in automated process control systems is described. The results of experimental research using the developed model are provided.