Legal support for cyber security in Ukraine

Abstract

The scientific article examines the prerequisites and features of the formation of Ukrainian legislation in the field of cyber security, identifies problems and prospects for its further development from the point of view of assessing existing dangers and threats. The directions of adapting the current legislation on cyber security to EU standards within the framework of the implementation of the provisions of the Association Agreement between Ukraine and the EU, as well as taking into account Russia's hybrid war against Ukraine, have been determined. It is noted that the legal framework in the field of cyber security of Ukraine is a system of acts of a legal nature, which contains normative acts that determine the legal order, norms and requirements, regulate the behavior of subjects in the cyber environment in order to ensure the organization of social relations and the implementation of state control over compliance with the norms of legal regime within the framework of the use of information technologies. It is emphasized that the legal framework of cyber security of Ukraine consists of international obligations (primarily, the Budapest Convention and the Directive on network and information security) and national legislation (primarily, the Law of Ukraine "On the Basic Principles of Ensuring Cyber Security of Ukraine" and the Cyber Security Strategy of Ukraine). It was emphasized that the Cybersecurity Strategy of Ukraine should be considered by all state authorities and management as a universal tool, thanks to which it is possible to ensure the implementation of current state tasks in the field of cyber security. On the other hand, the rejection of state strategic planning in important spheres of the state's vital activities has risks of crisis manifestations and negative consequences for the development of society and state institutions. Prospective directions for the development of the national cyber defense system have been determined: the development of international cooperation in the field of cyber security; improvement of the legal basis of cyber protection of critical infrastructure objects; implementation of an independent information security audit system at these facilities; creation of industry response centers for cyber incidents; development of the personnel training system in the field of cyber security; increasing the digital literacy of citizens and the culture of safe behavior in cyberspace, etc.