Diseño de un sistema de gestión de seguridad de la información para el proceso administrativo de la infraestructura tecnológica de instituciones académicas basado en Magerit

Eduardo Alfonso Rosales Montalbán; Raúl José Martelo Gómez; David Antonio Franco Borré

Design of an information security management system for the process of managing of the technological infrastructure of academic institutions based on Magerit

Authors

Eduardo Alfonso Rosales Montalbán Cartagena University https://orcid.org/0000-0002-2323-3371 (unauthenticated)
Raúl José Martelo Gómez Cartagena University https://orcid.org/0000-0002-1088-1572 (unauthenticated)
David Antonio Franco Borré Cartagena University https://orcid.org/0000-0001-7500-0206 (unauthenticated)

Keywords:

ISMS, infraestructure management, Magerit, Iso 27001, Ict

Abstract

In this research, an Information Security Management System (ISMS) was designed to be applied in the management process of technological infrastructure management of a school located in Cartagena de Indias (Colombia). The above allowed to identify assets to be considered by the organization in the application of a management system appropriate to its policies through the approach of ISO 27001 and the MAGERIT methodology. Risk analyzes and evaluations were carried out, showing the protection mechanisms in addition to the characterization and weighting of the assets, threats, and safeguards involved in the infrastructure management of the school. The results obtained show control mechanisms and security policies that provide solutions to the threats found: unintended use of infrastructure, system crash due to resource depletion, denial of service, and unauthorized access, which represent a high level of risk in the school, framed in the cycle of continuous improvement.

References

Downloads

pdf (Spanish)

Published

2020-06-30

Issue

Vol. 11 No. 1 (2020): Aglala Journal

Section

Papers

License

Authors who publish in this journal agree to the following terms:

a. Authors give their rights to the article in a non-exclusive way for the magazine to be published for the first time by the journal as well as licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgment of authorship of work and initial publication in this magazine.

b. Authors can establish separate additional agreements for non-exclusive distribution of the version of the work published in the journal (for example, to an institutional repository or to publish it in a book), with an acknowledgment of its initial publication in this journal.

c. Authors are allowed and encouraged to disseminate their work electronically (e.g., in institutional repositories or your own website) prior to and during the submission process, as it can lead to productive exchanges, as well as a citation more early and most of published work (See the Effect of Open Access) (in English).

How to Cite

Design of an information security management system for the process of managing of the technological infrastructure of academic institutions based on Magerit. (2020). Aglala, 11(1), 227-245. https://revistas.uninunez.edu.co/index.php/aglala/article/view/1579