OSINT tools as a component of the risk management system

the purpose of the research is to analyze OSINT tools as components of a digital risk management system. Methods: the information base of the study included information and analytical reviews of cyber threats in small and medium-sized businesses, expert opinions of information security specialists, and educational and methodological materials on open source intelligence. The following research methods were used in the work: comparison, generalization, abstraction, classification, systematization, synthesis, and a systems approach. Findings: with the rapid development of cyber threats and the growing volume of open data, OSINT (open source intelligence) tools are becoming an integral part of the risk management system. The article analyzes the potential of OSINT to identify vulnerabilities, predict incidents, and minimize threats in the corporate environment. Methods of collecting, processing and interpreting data from open sources, as well as their integration into automated risk assessment systems, are considered. Special attention is paid to the practical application of OSINT in cybersecurity, detection of confidential information leaks and monitoring of shadow network segments. As a result of the research, approaches to improving OSINT's effectiveness in risk management are proposed, ensuring the preventive detection of threats and reducing potential damage. Conclusions: it has been proven that the growth of digitalization of the Russian economy is accompanied by a significant increase in cyber threats, with malware, phishing and DDoS attacks being the most dangerous, and average losses from data leaks reaching $4.88 million. The use of OSINT tools and the implementation of risk management systems make it possible to effectively identify threats at an early stage, minimize financial losses and reduce incident response time.

open source intelligence, OSINT, digital transformation, information security, information risks, cyber-attacks, minimization measures