Método para Gestionar la Seguridad de activos de Información

Método para Gestionar la Seguridad de activos de Información

A method that manages the information assets of a process in an organization is presented, in order to save the security of said assets; it was endured in a problem, in which it was shown that ignorance and lack of awareness generated vulnerability; For this, a review of the literature related to in...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:RISTI : Revista Ibérica de Sistemas e Tecnologias de Informação 2023-10 (E62), p.252-266
Hauptverfasser: Mejia, Juan Camilo Giraldo, Agudelo, Fabio Alberto Vargas, Rivas, Mireya Mena, Delgado, Iván Andrés
Format: Artikel
Sprache:spa
Schlagworte:
Information management
Literature reviews
Risk management
Security
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:A method that manages the information assets of a process in an organization is presented, in order to save the security of said assets; it was endured in a problem, in which it was shown that ignorance and lack of awareness generated vulnerability; For this, a review of the literature related to information security was necessary using scientific sources, data from the World Information Security survey, prepared by PwC Spain 2018 and from the ESET SECURITY REPORT Latm America 2019. The information assets, vulnerabilities were detected, risks were analyzed, controls were suggested, and a validation was carried out through a case study. The method improves as a control measure allowed the state of vulnerability, prevent risks, and save security. Para la gestión de los Riesgos en las organizaciones se cuenta con (ISO 31000:2018 Risk management - Guidelines, 2019).
ISSN:1646-9895