Portal del Investigador
Diseño de una política de seguridad de la información: una propuesta
Keywords: policy, information security, tic, ISO/IEC 27.000
Abstract
Currently, the support processes for administrative and technological management within organizations require clear policies that allow achieving high levels of security. This work presents a proposal for designing information security (IS) policies in the ICT department of a regional company. The methodology is based on obtaining information from the domains associated with the ISO 27.002 standard within the company. The results show an improvement in the company’s IS, considering the elaboration of procedures and controls to restrict access to data and some dependencies of the Company, mainly the ICT department.
Más información
| Título de la Revista: | RISTI - REVISTA IBERICA DE SISTEMAS E TECNOLOGIAS DE INFORMACAO |
| Volumen: | 11 |
| Editorial: | AISTI - Associação Ibérica de Sistemas e Tecnologias de Informação |
| Fecha de publicación: | 2021 |
| Página de inicio: | 285 |
| Página final: | 298 |
| Idioma: | Español |
| URL: | http://www.risti.xyz/issues/ristie46.pdf |
| Notas: | Scopus |