厄瓜多尔公共组织信息安全分析

2021 International Conference on Computational Science and Computational Intelligence (CSCI) Pub Date : 2021-12-01 DOI:10.1109/CSCI54926.2021.00195

Richard Romero Izurieta, Luis Jhony Caucha Morales, Segundo Moisés Toapanta Toapanta, Luis Enrique Mafla Gallegos, José Antonio Orizaga Trejo

{"title":"厄瓜多尔公共组织信息安全分析","authors":"Richard Romero Izurieta, Luis Jhony Caucha Morales, Segundo Moisés Toapanta Toapanta, Luis Enrique Mafla Gallegos, José Antonio Orizaga Trejo","doi":"10.1109/CSCI54926.2021.00195","DOIUrl":null,"url":null,"abstract":"Public organizations have the responsibility by law to manage sensitive data that must be shared; the problem was found that organizations are very vulnerable and that computer attacks are becoming more and more effective and dangerous. As an objective of this research, the Information Security of public organizations in Ecuador was analyzed, the current status was known and improvements in its management were proposed. The deductive method was applied for the review and analysis of factors and variables that allow improving information security management in public organizations. The result was an Information security management model based on strategic planning, process and matrices for the evaluation of the information security management capacity. It was concluded that public organizations in Ecuador have a low level of information security management capacity, 70% are at a \"Formative\" level and 22% at a \"Managed\" level. To Manage Information Security in an optimal way, it is necessary to start from a strategic planning that allows directing the resources and capacities available to the achievement of the objectives established for the organization.","PeriodicalId":206881,"journal":{"name":"2021 International Conference on Computational Science and Computational Intelligence (CSCI)","volume":"2 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2021-12-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Analysis of the Information Security of Public Organizations in Ecuador\",\"authors\":\"Richard Romero Izurieta, Luis Jhony Caucha Morales, Segundo Moisés Toapanta Toapanta, Luis Enrique Mafla Gallegos, José Antonio Orizaga Trejo\",\"doi\":\"10.1109/CSCI54926.2021.00195\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Public organizations have the responsibility by law to manage sensitive data that must be shared; the problem was found that organizations are very vulnerable and that computer attacks are becoming more and more effective and dangerous. As an objective of this research, the Information Security of public organizations in Ecuador was analyzed, the current status was known and improvements in its management were proposed. The deductive method was applied for the review and analysis of factors and variables that allow improving information security management in public organizations. The result was an Information security management model based on strategic planning, process and matrices for the evaluation of the information security management capacity. It was concluded that public organizations in Ecuador have a low level of information security management capacity, 70% are at a \\\"Formative\\\" level and 22% at a \\\"Managed\\\" level. To Manage Information Security in an optimal way, it is necessary to start from a strategic planning that allows directing the resources and capacities available to the achievement of the objectives established for the organization.\",\"PeriodicalId\":206881,\"journal\":{\"name\":\"2021 International Conference on Computational Science and Computational Intelligence (CSCI)\",\"volume\":\"2 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2021-12-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2021 International Conference on Computational Science and Computational Intelligence (CSCI)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/CSCI54926.2021.00195\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2021 International Conference on Computational Science and Computational Intelligence (CSCI)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CSCI54926.2021.00195","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 0

摘要

根据法律，公共组织有责任管理必须共享的敏感数据;问题是，组织是非常脆弱的，计算机攻击变得越来越有效和危险。作为本研究的目的，对厄瓜多尔公共组织的信息安全进行了分析，了解了其现状，并提出了改进管理的建议。运用演绎法对公共机构信息安全管理改进的因素和变量进行审查和分析。建立了一个基于战略规划、过程和矩阵的信息安全管理模型，用于信息安全管理能力的评估。结论是厄瓜多尔公共组织的信息安全管理能力水平较低，70%处于“形成”水平，22%处于“管理”水平。为了以最佳方式管理信息安全，有必要从战略计划开始，该计划允许指导可用的资源和能力，以实现为组织建立的目标。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Analysis of the Information Security of Public Organizations in Ecuador

Public organizations have the responsibility by law to manage sensitive data that must be shared; the problem was found that organizations are very vulnerable and that computer attacks are becoming more and more effective and dangerous. As an objective of this research, the Information Security of public organizations in Ecuador was analyzed, the current status was known and improvements in its management were proposed. The deductive method was applied for the review and analysis of factors and variables that allow improving information security management in public organizations. The result was an Information security management model based on strategic planning, process and matrices for the evaluation of the information security management capacity. It was concluded that public organizations in Ecuador have a low level of information security management capacity, 70% are at a "Formative" level and 22% at a "Managed" level. To Manage Information Security in an optimal way, it is necessary to start from a strategic planning that allows directing the resources and capacities available to the achievement of the objectives established for the organization.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

2021 International Conference on Computational Science and Computational Intelligence (CSCI)

自引率

0.00%

发文量