ISO/IEC 27001 implementation in public organizations: A case study

Bayona Sussy, Chauca Wilber, Lopez Milagros, Maldonado Carlos

Producción científica: Contribución a una conferenciaArtículo

7 Citas (Scopus)

Resumen

© 2015 AISTI. In recent years, due to the intensive use of information technology, the information security has become a crucial and strategic issue in organizational management. Various standards and guidelines for security information as ISO/IEC 27001, ISO/IEC 27002, and COBIT have been developed; however, organizations still face difficulties in their implementation. This paper presents the current situation of the ISO/IEC 27001 implementation process in Peruvian public organizations. As a result of literature review, the critical success factors for successful implementation of ISO/IEC 7001 were identified. Furthermore, it was conducted a review of the ISO/IEC 27001 implementation in five organizations, taking into consideration the critical success factors identified. From the results obtained, it is concluded that there is the need for considering not only technical, legal, and organizational issues but also factors related to people such as training, knowledge and awareness raising in order to get success of information security management.
Idioma originalInglés estadounidense
DOI
EstadoPublicada - 1 ene. 2015
Evento2015 10th Iberian Conference on Information Systems and Technologies, CISTI 2015 -
Duración: 28 jul. 2015 → …

Conferencia

Conferencia2015 10th Iberian Conference on Information Systems and Technologies, CISTI 2015
Período28/07/15 → …

Huella

Profundice en los temas de investigación de 'ISO/IEC 27001 implementation in public organizations: A case study'. En conjunto forman una huella única.

Citar esto