Effects of the implementation of an ISMS based on the ISO 27001 standard for organizations

Authors

DOI:

https://doi.org/10.31381/perfilesingenieria.v18i18.5399

Keywords:

ISO 27001, information security, companies, technology, ISMS, implementation

Abstract

Data protection is an outstanding figure in reality, in the domain of networks and communications, which is why it is significant to detail with comprehensive results that allow the efficient execution of computer warnings that try to complicate the resources in the services or take advantage of private information. The current research aims to develop a systematic exploration based on effects of the application of the ISO 27001 standard in different organizations, public and private, companies and micro-enterprises, SMEs and mypes, which are between 2016 and 2021. The open access repositories used were ALICIA, DIALNETPLUS, REDALYC, SCIELO. Likewise, the writings were ordered by time of diffusion, language, place of publication and it was concluded that the application of a data security procedure truly contributes to the following aspects: availability, confidentiality and integrity; Determine the risks, vulnerabilities and threats in the processes; understanding of the skills in data security increasing the confidence and progress of the corporate image.

Downloads

Download data is not yet available.

Author Biographies

Jamil Alberto Panaqué Dominguez, Universidad Nacional de Trujillo, Perú.

Estudiante de Ingeniería de Sistemas.

Yerson Gabriel Lizárraga Caipo, Universidad Nacional de Trujillo, Perú.

Estudiante de Ingeniería de Sistemas.

Alberto Mendoza De los Santos, Universidad Nacional de Trujillo, Perú.

Senior Lead Implementer.

References

A. R. Mantilla Guerra, «Gestión de seguridad de la información con la norma ISO 27001:2013,» ESPACIOS, vol. 39, nº 18, p. 5, 2018.

H. Laksono y Y. Supriyadi, «Design and implementation information security governance using Analytic Network Process and cobit 5 for Information Security a case study of unit XYZ,» de 2015 International Conference on Information Technology Systems and Innovation (ICITSI), 2015.

A. Budi Setiawan, A. Syamsudin y A. Sasongko Sastrosubroto, «Information security governance on national cyber physical systems,» de 2016 International Conference on Information Technology Systems and Innovation (ICITSI), 2016.

J. Yepez Nuñez, G. Urrútia, M. Romero García y S. Alonso Fernandéz, «Declaración PRISMA 2020: una guía actualizada para la publicación de revisiones sistemáticas,» Revista Española de Cardiología, vol. 74, pp. 790-799, 2021.

L. A. Poma Rosales, «Plan de mejora de la seguridad de la información del Seguro Social de Salud – EsSalud aplicando estándar ISO/IEC 27001,» Trujillo, 2019.

I. Valverde Reyes, «Seguridad de la información aplicando el ISO 27001:2013 para la oficina de registros y archivos académicos de la Universidad Nacional Del Callao 2017,» Callao, 2017.

G. Pedraza Rodríguez, «Plan de implementación de un sistema de gestión de seguridad de la información en una entidad del sector público basado en la NTC ISO 27001:2013,» Bogotá, 2017.

H. Olaza Aliano, «Implementación de NTP ISO/IEC 27001 para la Seguridad de Información en el Área de Configuración y Activos del Ministerio de Educación – Sede Centromin,» Lima, 2017.

J. Angulo Osorio, «Mejora de los Procesos de Tecnologías de la Información Aplicando Cobit 5.0 y la Norma Técnica Peruana Ntp-Iso 27001: 2014. Caso: Autoridad Autónoma de Majes,» Arequipa, 2018.

C. Huerta Agurto, «Sistema de gestión de seguridad de la información para mejorar el proceso de gestión del riesgo de Coopsol Consultoría, 2019,» Lima, 2020.

E. Javier Macedo y H. Luna Castillo, «Propuesta de guía metodológica basada en ISO/IEC 27001:2013 y NTP ISO/IEC 27001:2014 en la seguridad de la información en la Municipalidad Provincial de Recuay - 2015,» Huaraz, 2019.

C. Rojas Viera y T. Zavaleta Verona, «Sistema de Gestión de Seguridad de Información (SGSI) Basado en la Norma ISO/IEC27001 para mejorar la Seguridad del Área de Operaciones y Tecnología de Global BPO Center Allus Chiclayo - 2015,» Chiclayo, 2015.

Perfiles de Ingenieria v18n18

Downloads

Published

2022-12-30

How to Cite

Panaqué Dominguez, J. A., Lizárraga Caipo, Y. G., & Mendoza De los Santos, A. (2022). Effects of the implementation of an ISMS based on the ISO 27001 standard for organizations. Engineering Profiles, 18(18), 67–74. https://doi.org/10.31381/perfilesingenieria.v18i18.5399

Issue

Vol. 18 No. 18 (2022): Perfiles de Ingeniería

Section

Ingeniería Industrial

License

Copyright (c) 2022 Jamil Alberto Panaqué Dominguez, Yerson Gabriel Lizárraga Caipo, Alberto Mendoza De los Santos

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

In the event that the manuscript is approved for its next publication, the authors retain the copyright and assign to the journal the right of publication, edition, reproduction, distribution, exhibition and communication in the country of origin, as well as in the abroad, through print and electronic media in different databases. Therefore, it is established that after the publication of the articles, the authors may make other types of independent or additional agreements for the non-exclusive dissemination of the version of the article published in this journal (publication in books or institutional repositories), provided that it is explicitly indicated that the work has been published for the first time in this journal. 

To record this procedure, the author must complete the following forms:

  • Format 1 - Author information.
  • Format 2 - Affidavit of originality and authorization for the publication of articles.
  • Format 3 - Compliance with open science.

Most read articles by the same author(s)