With the advent of the digital age, the need for governments and companies to use information technology to optimize performance, Business process smartening and provide remote services has increased. Thus, information technology and cyber security and information have also found a special place in the digital arena. Accordingly, one of the most serious dangers that governments face, which can also undermine national security, is cyber-attacks. These attacks cover a wide range of targets, one of the main of which is to damage critical infrastructure. Therefore, the sustainability of critical infrastructure in the face of such threats is crucial. This study, considering that the security of vital infrastructure is one of the most important factors in ensuring national security and passive defense, seeks to obtain the indicators of security of critical infrastructure through a comparative study method using library resources. In this study, 10 of the most important models of cyber security and information security maturity have been analyzed. The results of this study indicate that the studied models have a total of 93 indicators. Cyber security and information security maturity models are significantly similar,Therefore, some of the counted indicators overlap. Overlapping indicators were identified and classified into 17 groups. The results show that the "incident management" index with a frequency of 11 is the most important index in securing critical infrastructure, as well as physical security, monitoring, access-identity control, security policies and other indicators in They are next.

Objective: the goal of this research is to provide a conceptual model of cyber security maturity for the critical infrastructure of the country.Metodology: Based on this, by referring to upstream documents in the cyber field, reference cyber security maturity models, and using mixed research methods (quantitative and qualitative), we try to interpret the findings obtained from qualitative studies in an integrated manner with the aim of achieving a perceptual level and presenting a conceptual model. has been To identify dimensions, components and indicators, using theoretical literature and studying previous research, first 144 studies were evaluated using CASP tool and finally 21 studies were selected.Results: Selected studies were coded using MAXQDA software and finally 56 indicators were calculated. These indicators were shared with 16 experts through a questionnaire and the final indicators were extracted for model design. The obtained model includes three dimensions, 13 components and 56 indicators.Conclusion: Considering that the guidelines related to the maturity of cyber security must be complete and comprehensive in a way that includes all matters related to cyber security, therefore, it is possible to use the indicators calculated in this research the basis for compiling these guidelines.

With the advancement of mankind in the information age and the advent of the digital information age, dependence on national infrastructure has become more important than ever. Lack of cyber security in infrastructure, disrupts the functioning of various sectors such as government, economy and services. By disrupting critical infrastructure, irreparable damage may occur in areas such as human casualties, economic damage, and loss of public confidence. Thus, information technology and cyber security have a special place in the digital arena. Accordingly, one of the most important challenges of different countries today, which can also harm national security, is cyber-attacks. This study explores to provide a cyber security maturity model for critical infrastructure. This study examines and analyzes five crucial models of cyber security maturity. The research shows that the cybersecurity maturity models are significantly similar to each other. By comparative study and comparison between the analyzed models, 48 indicators were obtained. Examination of these indicators shows that some of them overlap with other indicators. Therefore overlapping indices were classified into 16 groups based on frequency. Then, these groups by clustering analysis method and according to the obtained data, using SPSS software were organized in five levels, based on which the cyber security maturity model for critical infrastructure was presented.

The existence of appropriate services in the Security Operations Center (SOC) and the effective use of Cyber Threat Intelligence (CTI) in organizations is one of the best solutions and modern processes for cybersecurity. Centers that do not have access to cyber threat intelligence will have a complex and difficult task of discovering and dealing with unusual behaviors from logs and events. In other words, the existence of cyber threat intelligence further strengthens the preventive dimension in the field of cybersecurity and makes the organization aware of its security deficiencies faster and before cyber attackers and criminals and take action to fix them. This research seeks to provide an appropriate method to measure the maturity of cyber threat intelligence in the security operations center and to propose opportunities for improvement. The model presented has been implemented in the police intelligence process and can be implemented in other organizations and their operation centers with adaptation. The implementation results show that the organization should develop the management and structural aspects of cyber threat intelligence in accordance with the relevant technologies. The existence of a Security Operations Center that has conducted relevant assessments based on threat intelligence requirements and adaptability to this evolution is one of the strengths of the organization, and the organization can use these facilities to improve the governance and management of cyber threat intelligence and improve its ecosystem management. The balanced development of these dimensions makes cyber threat intelligence strategies such as agility, decentralization, and the like implementable.

This article tries to explain effects of cyber threats on national security. Authors claim that cyber threats has raised phenomenon of power dispersion which enables small states to exercise their authority, and enables new actors like corporations, organized groups and individuals, to participate in globalised power equations. So they argue that, cyber threat has influences on national security in aspects of: concept of security, state-centrism in security, geographical aspect of threats, diffusion of vulenerabilities, diversity of actors in security field and way of confronting threats.

Security is the most basic need of any society and the most important factor for the sustainability of social life; therefore, it has been the focus of experts and theorists since the distant past. The spread of the Internet, new information and communication technologies, and the communication revolution have created a new type of virtual communication devoid of the spirit that governs real social relations. This has caused the emergence and formation of cyberspace parallel to the real world and has disrupted the equations and patterns of traditional communication, production, transfer, and consumption of information and has caused a global movement in the field of communication and transfer of content and communication messages in the fastest possible time. Therefore, as human life is mixed with the cyber revolution, cyber security has come. Cyber security is security in the infrastructure and information arteries, and creating new opportunities for jobs and countries in the environment of automation, electronic commerce, exchange, and cooperation has led to targeted production, storage, and exploitation of sensitive and vital information. In general, different aspects of citizens' lives are mixed with cyberspace, and any instability, insecurity and challenges in this space directly affect different aspects of citizens' lives, especially their security.

Cyber security has become a major problem in the world, and ASEAN has taken urgent steps to address cybersecurity. Security measures and other efforts to combat cyber incidents at the regional and national levels demonstrate ASEAN's awareness of the importance of a robust cyber approach that can be achieved by examining cyber security indicators with defense issues. Defense against innovative cyber-attacks, strategies against cyber security threats, government policies and protection of privacy, protection of computer infrastructure in government and legal and ethical issues in cyberspace are the objectives of this research with a descriptive-analytical approach. It comes to mind that the ASEAN countries have based their cyber security study axes on achieving a robust cyber approach, and how much research has been done on these indicators so far? The findings show that there has been limited research on cybersecurity research indicators, particularly government policies and privacy protection in some ASEAN countries, which is directly related to the increase in cybercrime.