Regresar

Analysis of the Information Security of Public Organizations in Ecuador

Abstract:

Public organizations have the responsibility by law to manage sensitive data that must be shared; the problem was found that organizations are very vulnerable and that computer attacks are becoming more and more effective and dangerous. As an objective of this research, the Information Security of public organizations in Ecuador was analyzed, the current status was known and improvements in its management were proposed. The deductive method was applied for the review and analysis of factors and variables that allow improving information security management in public organizations. The result was an Information security management model based on strategic planning, process and matrices for the evaluation of the information security management capacity. It was concluded that public organizations in Ecuador have a low level of information security management capacity, 70% are at a "Formative"level and 22% at a "Managed"level. To Manage Information Security in an optimal way, it is necessary to start from a strategic planning that allows directing the resources and capacities available to the achievement of the objectives established for the organization.