Regresar

Developing a maturity model for information system security management within small and medium size enterprises

Abstract:

For enterprises to be able to use information and communication technologies with guarantees, it is necessary to have an adequate security management available. This requires that enterprises always know their current maturity level and to what extend their security must evolve. Current maturity models are showing us that they are inefficient in small and medium size enterprises since these enterprises have a series of additional problems when implementing security management systems. In this paper, we will make an analysis of the maturity models oriented to security existing in the market by analysing their main disadvantages regarding small and medium size enterprises using as a reference framework ISO17799. This approach is being directly applied to real cases, thus obtaining a constant improvement in its application.

Año de publicación:

2006

Keywords:

    Fuente:

    scopusscopus

    Tipo de documento:

    Conference Object

    Estado:

    Acceso restringido

    Áreas de conocimiento:

    • Ciencias de la computación

    Áreas temáticas:

    • Ciencias de la computación
    • Dirección general
    • Física aplicada

    Contribuidores:

    Fernandez-Medina E.Fernandez-Medina E.
    Piattini-Velthuis M.Piattini-Velthuis M.
    Villafranca D.Villafranca D.
    Luis Enrique Sánchez CrespoLuis Enrique Sánchez Crespo