Plan de implementación de la ISO/IEC 27001:2013

Najar Rangel, Juan Carlos

Please use this identifier to cite or link to this item: http://hdl.handle.net/10609/96767

Title:	Plan de implementación de la ISO/IEC 27001:2013
Author:	Najar Rangel, Juan Carlos
Tutor:	Segovia Henares, Antonio José
Abstract:	The constant technological evolution in which society finds itself has brought innovations in technology that have completely replaced the old analogous tools, which are no longer the gears that move companies. This evolution has generated a change in all the business models we had known, as well as in the way people are managed. Business digitalization is no longer an alternative but an obligation if the company wants to be competitive. New technologies have come to increase business opportunities and facilitate the work of companies. However, despite the fact that technology brings endless benefits, it does not escape the cyber and digital risks. These risks have monetary consequences, as the attacks are increasingly sophisticated and recurrent. Therefore, it is very useful for organizations to implement an ISMS (Information Security Management System) which is based on ISO27001 and establishes a systematic process for protection against any threat that could affect the confidentiality, integrity or availability of information. This system offers the best practices and procedures that being applied correctly in the business environment, provide a continuous and appropriate improvement to evaluate the risks we face daily, establish controls for better protection and defend our most valuable asset within the organization, the information.
Keywords:	ISO/IEC 27001 information security
Document type:	info:eu-repo/semantics/masterThesis
Issue Date:	5-Jun-2019
Publication license:	http://creativecommons.org/licenses/by-nc-nd/3.0/es/
Appears in Collections:	Trabajos finales de carrera, trabajos de investigación, etc.