Incident management while sequiring information subsystems of automated management systems for complex organizational-technical objects

The article discusses the issues of ensuring the safety of information subsystems that are a part of automated control systems for complex organizational and technical objects of special purposes, when during their operation a violation of the confidentiality, accessibility or integrity of information or information resource occurs due to successfully conducted computer or network attack on the components of subsystem. In order to ensure the stable operation of information subsystems in this condition, the article proposes to organize security management processes and, in particular, processes of security incidents control on the basis of the deployed software and hardware complexes. Control systems distributed on the components of the information subsystem perform a number of security management tasks. One of the most important ones is the task of security incidents control. The article suggests approaches to organization of incident management.