As interest and expansion in the K-defense industry continues, hacking
aimed at domestic defense companies and defense research institutes for the
purpose of stealing data is occurring. On the other hand, some domestic
defense companies are exposed...
As interest and expansion in the K-defense industry continues, hacking
aimed at domestic defense companies and defense research institutes for the
purpose of stealing data is occurring. On the other hand, some domestic
defense companies are exposed to security threats due to difficulties in
maintaining basic security systems due to lack of professional security
personnel and budget, and are becoming major targets of attacks by hostile
countries and hackers. According to the National Intelligence Service
announced in March 2023, there have been 93 cases of industrial technology
being leaked overseas over the past five years, of which 33 cases were
national core technologies that have a significant impact on the national
economy and national security. lost. Voices are growing both inside and
outside the defense industry to recognize the importance of security and to
have a more strengthened security system and response system. Therefore,
we clearly analyze the duties of defense industry security experts and
present the necessity of security work to company management, and present
scientific basic data on the education system and defense industry
evaluation and audit to strengthen the 'cyber resilience' of defense industry
companies. The purpose is to do this. In this study, 'preliminary jobs' were calculated based on the Defense
Industry Security Work Directive, the Defense Industry Technology
Protection Guidelines, and papers in the field, and based on the 'preliminary
jobs', 11 experts in the defense industry security field were selected
through the Delphi technique. After finding a consensus on 'preliminary
duties' and confirming the duties required for the survey, we conducted a
survey on the importance, difficulty, and frequency of performance to about
40 experts in the defense industry security field, and used the IPA method
based on the survey results to identify defense industry security experts.
The job of was analyzed and evaluated.
This study analyzed and evaluated the jobs of defense industry security
experts by dividing them into importance-performance frequency,
importance-difficulty, and average importance/difficulty-performance
frequency, and four major policy improvement factors were derived. First, at
the level of defense industry management, manpower must be added to 14
detailed positions, including secret management and information and
communication security, and an advanced security system must be
established to keep up with the pace of IT development. Second, educational
institutions must improve the ‘educational curriculum’ by including 20
detailed jobs in the training content, such as establishing mid- to long-term
security plans, including information and communication security, which
defense industry security experts recognize as important but difficult. Third,
it is necessary to establish a clear standard for evaluating the integrated
survey and to give weight to information and communication security and secret management duties during the evaluation. Fourth, it is necessary to
enact the ‘Framework Act on Defense Industry Security (tentative name)’
through unification of the Defense Industry Security Work Directive and the
Defense Industry Technology Protection Act.
In conclusion, this study presented scientific job values, such as the need
for manpower recruitment for defense industry executives, the need for
improvement of professional education for educational institutions, and the
identification of weighted items for audit and evaluation organizations, and
is expected to be used as useful data by related organizations in the future.
see.