The approaches for model’s synthesis of private data security assessment in accordance with ISO/IEC 27001:2005 standards requirements.

The analysis of recent publications concerning an approaches to design, implementation and maintenance of the systems for personal data (PD) protection enables to note consistently high interest in this critical problem in the aspect of ensuring information security. Sure, the proposed models based on both International and Russian standards indicate deep-in-side knowledge of all aspects of protection PD, but at the same time present new questions, an effective solution of which has yet to be synthesized and tested in practice. The present article provides some approaches for creating models of PD security assessment in accordance with the requirements of standard GOST R ISO/IEC 27001:2005. Taking into account the relative newness of this standard as applied to the research problem, the proposed approaches can be useful in planning security systems PD, security assessment of designed ITSecurity with PD and, in particular, in solving of practical problems - IT-Security audits in organizations.