Designing cybersecurity management bodies in strategic planning: application of hybrid analysis

摘要

It is necessary for the design of the organisational structure of cybersecurity systems or information security systems to meet the basic goals of the organization. Thus, although cybersecurity is only an element of information security, it is its most important part. For that reason, it is essential for the organisational structure to be constantly perfected. The analysis of strengths, weaknesses, opportunities, and threats (SWOT) is one of the methods which can use to create the strategy for securing cyberspace. The basic idea of SWOT analysis is to enable the development behavior of the organization by finding key factors of the problem. The use of multiple criteria decision making (MCDM) in the second decade of the 21st century, some of the lacks has eliminated. The complexity of such decisions indicates that the use of crisp data is not suitable. This paper presents one way of a modification of the Saaty-s scale. To determine the criteria weights and alternative values, fuzzy numbers are used. The confidence interval of a fuzzy number is different from one comparison to another in pairs performed by decision-makers/experts. After the application of the AHP method in this way, the values of the functions criteria for each considered alternative are obtained. The Hybrid method which includes SWOT analysis and the Fuzzy Analytic Hierarchy Process FA'WOT, it was used to create the development strategy for cybersecurity management bodies. This paper is a part of the research project "Hybrid Warfare-experience and perspectives" run by the Strategic Research Institute, University of Defence in Belgrade.