The article defines the essence of information security as an essential component of the economic security of a credit institution on the basis of many definitions of the concepts of "information security" and "economic security" formulated by different researchers taking into account different points of view. Special attention is paid to new regulatory documents regulating the security of the critical information infrastructure of the Russian Federation, ensuring the information security of the credit and financial sector, improving the operational risk management system and comprehensive modernization of corporate risk management systems in credit institutions, taking into account the new conditions for ensuring information security and the functioning of the economic security system, on the effective functioning of which the ability to a credit institution's commitment to sustainable development.