Monitoring bases of informational system’s personnel’ security from sociotechnical attacks.

Active attraction of information technologies when conducting modern business puts forward a number of requirements to safety of information resources used thus. In this regard the majority of experts in information security is engaged in development of various methods of protection of information systems from technical attacks. Recently more and more the staff of departments of information security starts paying attention to problems of security of users of the information systems. About sociotechnical (socio-engineering) attacks tell the majority of authors of considered articles, but in one of them there are no data on the solution of problems of the automated assessment of degree of security of the personnel of information systems or problems of an assessment of efficiency of the actions directed on prevention of such attacks. The purpose of this article is the short state-of-the-art review of scientific literature on subject of information security which will allow to list as existing needs for the analysis of security of users of information systems, and the preconditions revealed by the author to development of new approaches of such analysis.