International Scientific Journals
of Scientific Technical Union of Mechanical Engineering "Industry 4.0"

This article proposes an approach to improving the use of IDS/IPS systems in computer networks of forces and means of state and local administration bodies in the event of incidents, disasters, accidents and catastrophes. To this end, good practices for selecting an appropriate type of IDPS to increase the level of cybersecurity in the organization are studied. It is proposed to use the “type” metric to develop a comparative analysis of the correspondence between the types of IDPS and their ability to protect against ransomware, using the classification of tactics and techniques in accordance with the MITRE ATT&CK framework.