Ciberseguridad y su aplicación en las instituciones de educación superior públicas de Manabí
The present investigation, called Cybersecurity and its application in the Institutions of Public Higher Education of Manabí, had the purpose of determining the level of Cybersecurity using the ISO 27032-2012 standard in order to know the risks, threats and vulnerabilities of the systems distributed...
Saved in:
| Main Author: | |
|---|---|
| Other Authors: | |
| Format: | masterThesis |
| Language: | spa |
| Published: |
2019
|
| Subjects: | |
| Online Access: | http://repositorio.espam.edu.ec/handle/42000/1032 |
| Tags: |
Add Tag
No Tags, Be the first to tag this record!
|
Add Tag | Summary: | The present investigation, called Cybersecurity and its application in the Institutions of Public Higher Education of Manabí, had the purpose of determining the level of Cybersecurity using the ISO 27032-2012 standard in order to know the risks, threats and vulnerabilities of the systems distributed. Using the Modal Analysis of Faults and Effects (AMFE) methodology, the level of risks in each security domain was identified and evaluated (Information, Networks, Application), which allowed us to propose other measures or suggested solutions for improvement, either short or long term in aspects of integrity, availability and reliability of the information. To complement the objective, the vulnerability scanning tools Shodan, Nessus and Acunetix were applied in the distributed systems of the Public IES, showing as a result reports of the different vulnerability categories that these systems had, and these in turn provided recommendations for mitigate the insecurities in Cyberspace. All this leads to a better reinforcement of the levels of security in the portals, systems or web services, of which are forms of access to information, and which must be continuously monitored or analyzed for adequate protection of the data. As a solution measure, the authors developed an action plan that allowed each institution under study to take actions to safeguard the integrity of its information. |
|---|