Critical infrastructure security management in the era of cyber threats

Abstract

PURPOSE: This article analyses contemporary cyber threats against critical infrastructure and identifies effective strategies for managing its security under conditions of increasing digitisation. The study focuses on assessing the impact of attacks on the energy, transportation, water supply, and healthcare sectors and identifying institutional and legislative measures to strengthen the resilience of these systems.

RESEARCH METHODOLOGY/APPROACH: The paper uses theoretical methods, including literature analysis, cybersecurity industry reports and case studies of selected incidents that affected critical infrastructure in 2023-2025. The first part characterises the main types of cyber attacks (ransomware, DDoS, APT) and the sectors most vulnerable to disruption. This follows an analysis of the consequences of selected attacks on state and private infrastructure operations. The final section presents a systemic approach to security management, including the concepts of resilience, redundancy, business continuity and legislative solutions such as the NIS2 directive and national infrastructure protection programs. The research problem was formulated: What cyber threats pose the most significant challenge to critical infrastructure security, and what strategies can ensure adequate protection? The hypothesis is that effective protection of critical infrastructure requires integrated actions based on technology, regulation and cross-sector and international coordination.

RESULTS: The conclusions of the analysis indicate that critical infrastructure remains one of the most common targets of cyberattacks, and their effects are often cascading and crossborder. Protecting these assets requires a systems approach that combines threat detection technologies, business continuity planning, collaboration between operators and security services, and regulatory alignment with the dynamically changing threat landscape.

PRACTICAL IMPLICATIONS: The findings are essential for state security institutions, critical service operators and policymakers. Adequate infrastructure protection requires technological investment and awareness-building among management and operational staff, as well as regular training, resilience testing and security audits. Lessons can be used in the design of public policies and the development of crisis management plans.

ORIGINALITY/VALUE: The article brings value by comprehensively addressing the problem of critical infrastructure security management in the context of growing cyber threats. It combines technological, institutional and legal analysis to formulate practical recommendations for national and international protection systems. It emphasises the need to strengthen cross-border cooperation and harmonise protection standards within structures such as the European Union and NATO.