Regresar

Testing the information risk level with ECU@Risk

Abstract:

Information is the most valuable element for any organization or person in this new century, being an instrument to create competitive advantage. However, despite the lack of knowledge on information protection alternatives and the complexity of international standards, for many MSMEs is difficult to achieve this goal. This paper focuses on the application of ECU@Risk, an information security methodology for computer risk management applicable to the business and organizational environment of the Ecuadorian MPYME sector. For this purpose, four companies in the aforementioned sector were analyzed comparatively, information assets and threats were identified and valued; which consequently allowed to identify the risk exposure level of these organizations, thus validating this methodology for risk management, which has clearly described the process to be followed.

Año de publicación:

2018

Keywords:

  • Risk
  • information security
  • MSME
  • ECU@RISK

Fuente:

googlegoogle
scopusscopus

Tipo de documento:

Conference Object

Estado:

Acceso restringido

Áreas de conocimiento:

    Áreas temáticas:

    • Gestión y servicios auxiliares
    • Programación informática, programas, datos, seguridad
    • Interacción social

    Contribuidores:

    Paul Esteban Crespo MartinezPaul Esteban Crespo Martinez
    Jorge Luis Bermeo ContoJorge Luis Bermeo Conto