TY - GEN
T1 - Guía Técnica Metodológica en Seguridad y Ciberseguridad
T2 - 7th International Congress on Ambient Intelligence, Software Engineering, and e-Health and Mobile Health, AmITIC 2024
AU - López Valerio, Cynthia
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024
Y1 - 2024
N2 - This research proposes a technical methodological guide in Security and Cybersecurity with the objective of facilitating the use and documentation in this area of specialization for companies. It has three approaches to the ISO 27001:2023 standards Information security, cybersecurity and privacy protection, Information security management systems, ISO 27002:2023, Information security controls and 27005:2019, Information Security Risk Management, which will be developed throughout the content of the defined guide. This research is qualitative descriptive, it contains a case study applied to 22 companies, which carried out a questionnaire to know their status. The guide has a structure as follows: Guidelines, Processes, Procedures, guides, forms, and indicators as a monitoring and traceability tool. Organizations can address this issue and have documented processes that facilitate constant improvement and updating to strengthen the understanding of what should be used and its application. At the end, the conclusions are detailed and what is expected to be done for the future.
AB - This research proposes a technical methodological guide in Security and Cybersecurity with the objective of facilitating the use and documentation in this area of specialization for companies. It has three approaches to the ISO 27001:2023 standards Information security, cybersecurity and privacy protection, Information security management systems, ISO 27002:2023, Information security controls and 27005:2019, Information Security Risk Management, which will be developed throughout the content of the defined guide. This research is qualitative descriptive, it contains a case study applied to 22 companies, which carried out a questionnaire to know their status. The guide has a structure as follows: Guidelines, Processes, Procedures, guides, forms, and indicators as a monitoring and traceability tool. Organizations can address this issue and have documented processes that facilitate constant improvement and updating to strengthen the understanding of what should be used and its application. At the end, the conclusions are detailed and what is expected to be done for the future.
KW - controls
KW - Cybersecurity
KW - Information Security
KW - Risks
KW - Technical Methodological Guide
KW - vulnerabilities
UR - http://www.scopus.com/inward/record.url?scp=85211964079&partnerID=8YFLogxK
U2 - 10.1109/AmITIC62658.2024.10747613
DO - 10.1109/AmITIC62658.2024.10747613
M3 - Contribución a la conferencia
AN - SCOPUS:85211964079
T3 - 7th International Congress on Ambient Intelligence, Software Engineering, and e-Health and Mobile Health, AmITIC 2024
BT - 7th International Congress on Ambient Intelligence, Software Engineering, and e-Health and Mobile Health, AmITIC 2024
A2 - Villarreal, Vladimir
PB - Institute of Electrical and Electronics Engineers Inc.
Y2 - 25 September 2024 through 27 September 2024
ER -