Abstract

UNAS GOMEZ, José Luis; ESTRADA ESPONDA, Royer David  and  TORO PAREJA, Luis Germán. Implementation of a roadmap to ensure information in the development of online applications. Rev. logos cienc. tecnol. [online]. 2024, vol.16, n.3, pp.62-87.  Epub Dec 13, 2024. ISSN 2145-594X.  https://doi.org/10.22335/rlct.v16i3.1967.

This article presents a roadmap for the control of information and data in the areas of software application development for large, medium, and small online application development companies, which are vulnerable due to the lack of controls or policies that allow the protection of information from unwanted attacks and the exposure of sensitive information. A research methodology was implemented based on the International Organisation for Standardisation ISO 27001, the characteristics of Control Objectives for Information and Related Technologies COBIT and the Magerit methodology for the design of a Computer Security Management System (ISMS), which protects customer information in online application developments. With the presentation of the development methodology, control and experimental data have been used to secure information, managing to raise the level of security and maturity of the company, thereby seeking to guarantee the three pillars of information security: integrity, availability, and confidentiality.

Keywords : Security management; COBIT; securing information; online systems; roadmap.

        · abstract in Spanish | Portuguese     · text in Spanish     · Spanish ( pdf )