Evaluation Assurance Levels for Human Resource Security of an Information System

Present methods for evaluating reliance on the information system security do not take into account the socio-technical nature of the information system and modern humanitarian approaches to the evaluation of reliance on them. The article defines the term “reliance to the personnel security of the information system” and substantiates a multi-criteria classification that categorizes evaluation levels of the reliance on the information system personnel security. The classification is the scientific novelty of this research. Seven stated evaluation levels of reliance on the personnel security are relevant to the seven evaluation levels of reliance on the information technologies embodied in the international standard ISO / IEC 15408-3: 2008 Information Technology - Security Techniques - Evaluation Criteria For IT Security - Part 3. Security Assurance Components.