Plan Director de Seguridad en la Administración Local bajo la perspectiva de la Calidad del Dato

Asensio Palao, Ramón

Please use this identifier to cite or link to this item: http://hdl.handle.net/10609/126386

Title:	Plan Director de Seguridad en la Administración Local bajo la perspectiva de la Calidad del Dato
Author:	Asensio Palao, Ramón
Director:	Garrigues, Carles
Tutor:	Segovia Henares, Antonio José
Abstract:	Practical work to implement a Security Master Plan in a Spanish Local Public Administration under the protection of standards such as the National Security Scheme (ENS) and ISO/IEC 27001, while considering the quality of the data and its interoperability. A new simple application methodology on ISO 25012 is created to find a balance that allows us to have secure and applicable information systems. An implementation of the ENS conditioned by ISO 25012 is approached to later move closer to ISO/IEC 27001 and obtain the advantages of the three standards. We develop all the necessary main documentation, a risk analysis is carried out using MAGERIT methodology, we propose projects to improve the security of the information system by substituting those parts that do not meet the data quality objectives and we carry out an audit to evaluate the compliance with regulations. Our approach from ENS to ISO/IEC 27001 has allowed us to prioritize those high risk projects, always assuming the approval of the administration's high direction, we have managed to improve security in both standards although more progress has been made in ENS than in ISO/IEC 27001, due to the type of approach made for a public entity. The screening of ISO 25012 projects has enabled us to not invest resources in parts of the system that are better replaced than secured, and has managed to put the citizen at the center of electronic administration.
Keywords:	ISMS National Security Framework ISO 25012 MAGERIT National Interoperability Schema ISO 27001
Document type:	info:eu-repo/semantics/masterThesis
Issue Date:	28-Dec-2020
Publication license:	http://creativecommons.org/licenses/by-nc-nd/3.0/es/
Appears in Collections:	Trabajos finales de carrera, trabajos de investigación, etc.

Files in This Item:

File	Description	Size	Format
analisis de riesgos.mgr		39,71 kB	Unknown	View/Open
Evaluación madurez actual ISO 27001.mgr		43,56 kB	Unknown	View/Open
Evaluación madurez actual ENS.mgr		39,7 kB	Unknown	View/Open
Gap_Inicial_ISO27001_2020.xlsx		118,85 kB	Microsoft Excel XML	View/Open
patterns_27000_2013.xml		8 kB	XML	View/Open
presentación AR.odp		16,85 MB	OpenDocument Presentation	View/Open
Relación entre activos.jpg		794,7 kB	JPEG	View/Open
asensiopalaoTFM0121memoria.pdf	Memoria del TFM	3,19 MB	Adobe PDF	View/Open
asensiopalaoTFM0121planmejora.pdf	Plan de mejora de la seguridad del TFM	246,9 kB	Adobe PDF	View/Open
asensiopalaoTFM0121categorización.pdf	Categorización del sistema del TFM	262,65 kB	Adobe PDF	View/Open
Gap_Inicial_ISO27002_2020.xlsx		26,75 kB	Microsoft Excel XML	View/Open
presentacion resumen TFM.odp		25,85 MB	OpenDocument Presentation	View/Open
asensiopalaoTFM0121presentación.pdf	Presentación en PDF del TFM	10,63 MB	Adobe PDF	View/Open
asensiopalaoTFM0121Declaración de Aplicabilidad.pdf	Declaración de aplicabilidad del TFM	347,52 kB	Adobe PDF	View/Open
asensiopalaoTFM0121Decreto.pdf	Decreto Comité de Seguridad del TFM	91,98 kB	Adobe PDF	View/Open
asensiopalaoTFM0121ejmploPPT.pdf	Ejemplo PPT del TFM	269,57 kB	Adobe PDF	View/Open
asensiopalaoTFM0121planadecuación.pdf	Plan de adecuación al ENS del TFM	186,8 kB	Adobe PDF	View/Open
asensiopalaoTFM0121políticadeseguridad.pdf	Política de seguridad del TFM	242,9 kB	Adobe PDF	View/Open
asensiopalaoTFM0121auditorias.pdf	Procedimiento de auditorías internas del TFM	247,84 kB	Adobe PDF	View/Open
asensiopalaoTFM0121amenazas.pdf	Análisis de amenazas del TFM	1,46 MB	Adobe PDF	View/Open

Show full item record

Share:

Impact:

Google Scholar

Microsoft Academic

Export:

View statistics

This item is licensed under a Creative Commons License