Análisis de riesgos de los procesos del área de TI de la Cooperativa de ahorro y crédito Pedro Moncayo Ltda.
In the research of this titling work, it is tried to evaluate the degree of maturity of the technological activities, to analyze the risks with high criticality existing in the Department of Information Technology and Communications, and to elaborate an improvement plan that allows the Cooperative o...
Guardado en:
| Autor principal: | |
|---|---|
| Otros Autores: | |
| Formato: | bachelorThesis |
| Lenguaje: | spa |
| Publicado: |
2017
|
| Materias: | |
| Acceso en línea: | http://dspace.udla.edu.ec/handle/33000/7433 |
| Etiquetas: |
Agregar Etiqueta
Sin Etiquetas, Sea el primero en etiquetar este registro!
|
Agregar Etiqueta | Sumario: | In the research of this titling work, it is tried to evaluate the degree of maturity of the technological activities, to analyze the risks with high criticality existing in the Department of Information Technology and Communications, and to elaborate an improvement plan that allows the Cooperative of Savings and Credit "Pedro Moncayo Ltda." Comply with the current Strategic Plan. For risk analysis, the COBIT 5 Risk Methodology (ISACA, 2013) will be used, which is appropriate to determine the problems, threats and vulnerabilities that may affect the service and cause economic loss, reliability and non-compliance with Laws, regulations or regulations issued by the "Superintendence of the Cooperative and Popular and Solidary Financial System". This titling work consists of 6 chapters that will be explained next:Chapter I, Introduction, describes the background, situation of conflict and current problems of the Department of Information Technology and Communications; As well as the general and specific objectives, scope, and justification of this research project. In chapter II, Theoretical Framework, establishes the theoretical foundations used in this titling project. In Chapter III, the current situation of the "Pedro Moncayo" Savings and Credit Cooperative and the Department of Information Technology and Communications is explained and the degree of maturity of the technological activities carried out in this department is evaluated. Chapter IV, Risk Assessment, identifies and analyzes the risks, based on the COBIT 5 methodology for Risks (ISACA, 2013), using a Balanced Score Card, to establish the criticality of threats and vulnerabilities, according to a Scale and parameters of impact or consequence and probability or frequency that could cause economic losses, reliability and corporate image, and even failure to comply with the rules, regulations and regulations issued by the control entities for COAC "Pedro Moncayo Ltda.” Chapter V, Improvement Plan, indicates the action plans to be implemented to eliminate, to mitigate or minimize the risks identified only with "High" criticality |
|---|