Please use this identifier to cite or link to this item:
Title: Pla director de seguretat de la informació
Author: Carrasco Puy, Juanjo
Tutor: Tortajada Gallego, Arsenio
Keywords: computer security
ISO 27001
Issue Date: 7-Jun-2019
Publisher: Universitat Oberta de Catalunya (UOC)
Abstract: This final Master studies belongs to the Inter-University Master's Degree in Information Technology and Communications Security (MISTIC abbreviated) studies. The objective of the project is the development of a Security Master Plan for an IT consultancy, called the SCRIPTIX fictional way. The Security Master Plan is part of the ISO / IEC 27001: 2013 standard, and codes of good practices mentioned in the ISO / IEC 27002: 2013, which establish the specifications for implementing, managing, monitoring and improving a Management System of Information Security (ISMS). An analysis of the current security situation in the field of Information Technology and Communication has been carried out in order to define short and long term goals and propose a set of projects to reach -his Within this analysis we can highlight the differential analysis, the analysis of risks (using MAGERIT as a methodology) and the analysis of compliance with the ISO. The progress achieved in the implementation of the ISMS are: Identify the state of the security of the current information in relation to the different aspects of the standard (GAP) and set the scope and objectives. Establish a documentary base and determine the responsibilities of each of the components of the organizational security structure, in such a way that it ensures the accomplishment of all the necessary tasks and provide Review and Improvement. Identify and inventory the critical assets of the organization, determine the magnitude of the threats and, ultimately, specify the risks to which the different elements of the Information Systems of the organization are exposed. Based on the risks found, a series of projects and measures have been selected and prioritized that will allow to improve the security of the organization.
Language: Catalan
Appears in Collections:Bachelor thesis, research projects, etc.

Files in This Item:
File Description SizeFormat 
jcarrascopTFM0619memòria.pdfMemòria del TFM3.01 MBAdobe PDFView/Open

This item is licensed under a Creative Commons License Creative Commons