dc.contributor.advisor | Montece Moreno, Omar Rodrigo | |
dc.contributor.author | Fuentes Pozo, Erick Alexis | |
dc.date.accessioned | 2023-11-05T06:40:15Z | |
dc.date.available | 2023-11-05T06:40:15Z | |
dc.date.issued | 2023 | |
dc.identifier.uri | http://dspace.utb.edu.ec/handle/49000/14991 | |
dc.description | The PC Solutions Company, located in the city of Babahoyo, has established itself as a company that offers an excellent quality service in the sector of technological solutions and computer services. The absence of a comprehensive and standardized information security management model has left the organization vulnerable to a wide range of potential risks, from attacks by cybercriminals to internal errors that could result in the leakage of valuable data. The ISO 27001:2022 standard provides a solid framework for information security management in organizations of all types. However, each company has unique characteristics that must be considered when implementing this standard. Pc Soluciones must adapt the requirements and controls of the ISO 27001 standard to its own operational context and the services it offers. The combination of deductive and inductive methods in this methodological framework will allow the development of a comprehensive understanding of the current situation of information security in the company, base decisions based on theoretical and empirical evidence, and design an information security management model. information effective and adapted to the specific needs of Pc Soluciones. The analysis of the situation reveals serious deficiencies in the security of the company, including vulnerabilities in the network, effective social engineering attacks and serious violations of privacy and security. This highlights the urgent need to implement an information security management model based on ISO 27001:2022. This standard will provide a solid framework to address these issues, strengthen security awareness, and adequately protect company assets. | es_ES |
dc.description | The PC Solutions Company, located in the city of Babahoyo, has established itself as a company that offers an excellent quality service in the sector of technological solutions and computer services. The absence of a comprehensive and standardized information security management model has left the organization vulnerable to a wide range of potential risks, from attacks by cybercriminals to internal errors that could result in the leakage of valuable data. The ISO 27001:2022 standard provides a solid framework for information security management in organizations of all types. However, each company has unique characteristics that must be considered when implementing this standard. Pc Soluciones must adapt the requirements and controls of the ISO 27001 standard to its own operational context and the services it offers. The combination of deductive and inductive methods in this methodological framework will allow the development of a comprehensive understanding of the current situation of information security in the company, base decisions based on theoretical and empirical evidence, and design an information security management model. information effective and adapted to the specific needs of Pc Soluciones. The analysis of the situation reveals serious deficiencies in the security of the company, including vulnerabilities in the network, effective social engineering attacks and serious violations of privacy and security. This highlights the urgent need to implement an information security management model based on ISO 27001:2022. This standard will provide a solid framework to address these issues, strengthen security awareness, and adequately protect company assets. | es_ES |
dc.description.abstract | La Empresa PC Soluciones, ubicada en la ciudad de Babahoyo, se ha consolidado como una empresa que ofrece un servicio de excelente calidad en el sector de soluciones tecnológicas y servicios informáticos. La ausencia de un modelo de gestión de seguridad de la información integral y estandarizado ha dejado a la organización vulnerable a una amplia gama de riesgos potenciales, desde ataques de ciberdelincuentes hasta errores internos que podrían resultar en la filtración de datos valiosos. El estándar ISO 27001:2022 proporciona un marco sólido para la gestión de la seguridad de la información en organizaciones de todo tipo. Sin embargo, cada empresa tiene características únicas que deben ser consideradas al implementar este estándar. Pc Soluciones debe adaptar los requisitos y controles del estándar ISO 27001 a su propio contexto operativo y a los servicios que ofrece. La combinación de los métodos deductivos e inductivos en este marco metodológico permitirá desarrollar una comprensión integral de la situación actual de seguridad de la información en la empresa, fundamentar decisiones con base en evidencia teórica y empírica, y diseñar un modelo de gestión de seguridad de la información efectivo y adaptado a las necesidades específicas de Pc Soluciones. El análisis de la situación revela graves deficiencias en la seguridad de la empresa, incluyendo vulnerabilidades en la red, ataques de ingeniería social efectivos y violaciones graves de la privacidad y la seguridad. Esto destaca la urgente necesidad de implementar un modelo de gestión de seguridad de la información basado en ISO 27001:2022. Este estándar proporcionará una estructura sólida para abordar estos problemas, fortalecer la concienciación en seguridad y proteger adecuadamente los activos de la empresa. | es_ES |
dc.format.extent | 37 p. | es_ES |
dc.language.iso | es | es_ES |
dc.publisher | Babahoyo: UTB-FAFI. 2023 | es_ES |
dc.rights | Atribución-NoComercial-SinDerivadas 3.0 Ecuador | * |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/3.0/ec/ | * |
dc.subject | Ciberdelincuentes | es_ES |
dc.subject | Implementar | es_ES |
dc.subject | Seguridad | es_ES |
dc.subject | Vulnerabilidades | es_ES |
dc.title | Análisis y diseño de un modelo de gestión de seguridad de la información basado en el estándar ISO 27001:2022 para la Empresa Pc Soluciones de la ciudad de Babahoyo. | es_ES |
dc.type | bachelorThesis | es_ES |