SciELO - Scientific Electronic Library Online

 
 número22Cuadros de mando para gestionar el uso de bibliotecas digitales sobre datos enlazadosLa adopción de la tecnología cloud computing (SaaS): efectos de la complejidad tecnológica vs formación y soporte índice de autoresíndice de assuntospesquisa de artigos
Home Pagelista alfabética de periódicos  

Serviços Personalizados

Journal

Artigo

Indicadores

Links relacionados

  • Não possue artigos similaresSimilares em SciELO

Compartilhar


RISTI - Revista Ibérica de Sistemas e Tecnologias de Informação

versão impressa ISSN 1646-9895

Resumo

VALENCIA-DUQUE, Francisco Javier  e  OROZCO-ALZATE, Mauricio. A methodology for implementing an information security management system based on the family of ISO/IEC 27000 standards. RISTI [online]. 2017, n.22, pp.73-88. ISSN 1646-9895.  http://dx.doi.org/10.17013/risti.22.73-88.

A methodology for the implementation of an Information Security Management System (ISMS) based on the ISO/IEC 27000 family of standards is proposed, with an emphasis on the interrelationship of four fundamental standards which break down the activities to be developed in order to comply with the requirements established in the ISO/IEC 27001, the safety controls presented in the ISO/IEC 27002, the ISO/IEC 27005 risk scheme and the steps recommended in the ISO/IEC 27003. The result is a methodological process that explains how to face a project of this level of importance in the current context of organizations and based on international standards. This methodological process represents a contribution to the professionals who undertake this work, and who are looking for a method to carry out a successful implementation of an ISMS

Palavras-chave : INFORMATION SECURITY; ISO/IEC 27000; ISMS; IT RISKS; METHODOLOGIES.

        · resumo em Espanhol     · texto em Espanhol     · Espanhol ( pdf )

 

Creative Commons License Todo o conteúdo deste periódico, exceto onde está identificado, está licenciado sob uma Licença Creative Commons