Resumo

MONSALVE-PULIDO, Julián Alberto; APONTE-NOVOA, Fredy Andrés  e  CHAVES-TAMAYO, David Fernando. Information Vulnerabilities' Study and Management, for a Private Enterprise in the Boyacá Colombian Department. Rev. Fac. ing. [online]. 2014, vol.23, n.37, pp.65-72. ISSN 0121-1129.

The paper shows an informatics security diagnosis' results, applied to a private organization in the department of Boyacá, Colombia. It developed and implemented a vulnerability plan management, tailored according to that organization's needs. It began by raising the company's technological inventory, in order to identify the real problems that can cause any information security vulnerabilities. This research showed the plan's effectiveness, within the company, achieved after a 6-month monitoring period. It reached 70% vulnerabilities' reduction, by applying some remedies previously designed. Furthermore, the paper shows several comparative informatics tools' tables, which were selected and used in the management plan's application stage that could be a help for a future research, in the tools selection for monitoring and vulnerability's management.

Palavras-chave : Information Security; ISO 27001; Risk analysis; Vulnerabilities.

        · resumo em Português | Espanhol     · texto em Espanhol     · Espanhol ( pdf )