Diseño de una política de seguridad de la información: una propuesta

Sepúlveda, Samuel; Cravero, Ania

Keywords: policy, information security, tic, ISO/IEC 27.000

Abstract

Currently, the support processes for administrative and technological management within organizations require clear policies that allow achieving high levels of security. This work presents a proposal for designing information security (IS) policies in the ICT department of a regional company. The methodology is based on obtaining information from the domains associated with the ISO 27.002 standard within the company. The results show an improvement in the company’s IS, considering the elaboration of procedures and controls to restrict access to data and some dependencies of the Company, mainly the ICT department.

Más información

Título de la Revista: RISTI - REVISTA IBERICA DE SISTEMAS E TECNOLOGIAS DE INFORMACAO
Volumen: 11
Editorial: AISTI - Associação Ibérica de Sistemas e Tecnologias de Informação
Fecha de publicación: 2021
Página de inicio: 285
Página final: 298
Idioma: Español
URL: http://www.risti.xyz/issues/ristie46.pdf
Notas: Scopus