Evaluation of the Degree of Knowledge and Implementation of Information Security Management Systems, based of the NCh-ISO 27001 Standard, in Health Institutions

被引：0

作者：

Rienzo, Antonio ^{[1
]}

Bustamante, Miguel ^{[3
]}

Aravena, Camilo ^{[4
]}

Lefranc, Gaston ^{[2
]}

机构：

[1] Univ Valparaiso, Escuela Ingn Biomed, Fac Ingn, Valparaiso, Chile

[2] Pontificia Univ Catolica Valparaiso, Escuela Ingn Elect, Valparaiso, Chile

[3] Univ Adolfo Ibanez, Fac Ingn & Ciencias, Santiago, Chile

[4] Univ Valparaiso, Fac Ingn, Ingn Civil Biomed, Valparaiso, Chile

来源：

2018 IEEE INTERNATIONAL CONFERENCE ON AUTOMATION/XXIII CONGRESS OF THE CHILEAN ASSOCIATION OF AUTOMATIC CONTROL (ICA-ACCA) | 2018年

关键词：

Information security management system; ISO/IEC; 27.001; health security; data protection;

D O I：

暂无

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

Several companies and organizations are being violated and affected by threats, attacks or theft of information or money from their computer systems. Among them, health institutions, which handle confidential and sensitive data. There is a standard, NCh-ISO 27001, which defines the requirements to establish, implement, maintain and continuously improve an Information Security Management System. The article analyzes the advances in this area in the health sector in Chile; and presents a research, based on surveys, on the degree of knowledge and the degree of implementation of NCh-ISO 27001 in the establishments and Health Services of the country. The results obtained are analyzed, and there is evidence of the urgent need to implement and complete internal processes conducive to having an appropriate, efficient and effective information security management system.

引用

页数：6

共 29 条

[1] AUTOMATION OF AN INFORMATION SECURITY MANAGEMENT SYSTEM BASED ON THE ISO/IEC 27001 STANDARD
de la Rosa Martin, Tonyse
[J]. REVISTA UNIVERSIDAD Y SOCIEDAD, 2021, 13 (05): : 495 - 506
[2] Information Security Management Systems - A Maturity Model Based on ISO/IEC 27001
Proenca, Diogo
Borbinha, Jose
[J]. BUSINESS INFORMATION SYSTEMS (BIS 2018), 2018, 320 : 102 - 114
[3] A Model of an Information Security Management System Based on NTC-ISO/IEC 27001 Standard
Fonseca-Herrera, Omar A.
Rojas, Alix E.
Florez, Hector
[J]. IAENG International Journal of Computer Science, 2021, 48 (02) : 1 - 10
[4] NEW STANDARD ISO/IEC 27001:2013 OF INFORMATION SECURITY MANAGEMENT SYSTEM
Drastich, Martin
[J]. KNOWLEDGE FOR MARKET USE 2014: MEDIA AND COMMUNICATION IN THE 21ST CENTURY, 2014, : 387 - 393
[5] Analysis of factors that inhibiting implementation of Information Security Management System (ISMS) based on ISO 27001
Tatiara, R.
Fajar, A. N.
Siregar, B.
Gunawan, W.
[J]. 2ND INTERNATIONAL CONFERENCE ON COMPUTING AND APPLIED INFORMATICS 2017, 2018, 978
[6] The ISO/IEC 27001 information security management standard: literature review and theory-based research agenda
Culot, Giovanna
Nassimbeni, Guido
Podrecca, Matteo
Sartor, Marco
[J]. TQM JOURNAL, 2021, 33 (07): : 76 - 105
[7] Goal- Based Establishment of an Information Security Management System Compliant to ISO 27001
Beckers, Kristian
[J]. SOFSEM 2014: THEORY AND PRACTICE OF COMPUTER SCIENCE, 2014, 8327 : 102 - 113
[8] ADOPTION OF THE INFORMATION SECURITY MANAGEMENT SYSTEM STANDARD ISO/IEC 27001: A STUDY AMONG GERMAN ORGANIZATIONS
Mirtsch, Mona
[J]. INTERNATIONAL JOURNAL FOR QUALITY RESEARCH, 2023, 17 (03) : 747 - 768
[9] The ISO/IEC 27001 Information Security Management Standard: How to Extract Value from Data in the IT Sector
Kitsios, Fotis
Chatzidimitriou, Elpiniki
Kamariotou, Maria
[J]. SUSTAINABILITY, 2023, 15 (07)
[10] Supporting the Development and Documentation of ISO 27001 Information Security Management Systems through Security Requirements Engineering Approaches
Beckers, Kristian
Fassbender, Stephan
Heisel, Maritta
Kuester, Jan-Christoph
Schmidt, Holger
[J]. ENGINEERING SECURE SOFTWARE AND SYSTEMS, 2012, 7159 : 14 - +

← 1 2 3 →