Abstract

SABILLON, Régner  and  CANO M., Jeimy J.. Auditorías en Ciberseguridad: Un modelo de aplicación general para empresas y nacionesAudits in Cybersecurity: A model of general application for companies and nations. RISTI [online]. 2019, n.32, pp.33-48. ISSN 1646-9895.  https://doi.org/10.17013/risti.32.33-48.

This article presents the results of an implementation and validation study of the Cybersecurity Audit Model (CSAM), in a multiple case study at a Canadian university. It is proposed that the model be used to advance cybersecurity audits in any organization or nation to assess security, its maturity, and preparedness for cybersecurity. Similarly, identify needs to increase cybersecurity awareness at the organizational and personal levels. CSAM has been tested, implemented and validated in three investigation scenarios (1) Audit of all model domains, (2) Audit of several domains and (3) an audit of a single domain. The article concludes by detailing relevant information for future decision making in order to adjust the identified cybersecurity limitations, improve their domains and controls, and thus efficiently implement and test this model in any organization or country.

Keywords : Cybersecurity; cybersecurity audit models; cybersecurity audits; cybersecurity controls; cybersecurity assurance.

        · abstract in Spanish     · text in Spanish     · Spanish ( pdf )