EVALUATION OF CURRENT INCIDENTS AND RISKS IN THE TECHNOLOGICAL INFRASTRUCTURE OF LAICA ELOY ALFARO UNIVERSITY IN MANABÍ-ECUADOR
PDF (Español (España))
HTML (Español (España))

Keywords

Management model
modal failure analysis
computer unit
indicator evaluation
STANDARD 22301

How to Cite

Viteri Alcívar, Y. A., Cano Montesdeoca, M. T., Zambrano Rendón, A. D., & Minaya Vera, C. G. (2019). EVALUATION OF CURRENT INCIDENTS AND RISKS IN THE TECHNOLOGICAL INFRASTRUCTURE OF LAICA ELOY ALFARO UNIVERSITY IN MANABÍ-ECUADOR. Universidad Ciencia Y Tecnología, 23(94), 7. Retrieved from https://uctunexpo.autanabooks.com/index.php/uct/article/view/173

Abstract

The vulnerabilities of the technological infrastructure of the Lay University Eloy Alfaro de Manabí were analyzed. For this, the methodology was used by levels. Initially, the current situation of the Central Computer Coordination Unit was determined and the main incidents on the site were identified, which were assessed considering their level of sensitivity. With the methodology Modal Analysis of Faults and Effects, the levels of probability and impact of the risks were reached, the MAGERIT methodology was also used to identify the assets of the unit and the threats to which they may be exposed. Finally, the Continuity Management Model was developed, based on the following phases: Scope of the Business Continuity Plan, Risk Assessment, Business Impact Analysis, Recovery Strategies and Plan Development. Finally, it is concluded that the computer unit is exposed to 59% of critical risks caused by threats according to the analysis carried out with a high level of criticality, so the proposed model will allow to respond significantly to possible incidents in order to give continuity to operations for the benefit of the university community.

Keywords: Management model, modal failure analysis, computer unit, indicator evaluation. STANDARD 22301.

[1]ISO, «ISO», [Online]. Available: https://www.isotools.org/normas/ [Last Access: May 2019].

[2] A. R. Castro y Z. O. Bayona, «Gestión de Riesgos tecnológicos basada en ISO 31000 e ISO 27005 y su aporte a la continuidad de negocios,» Dialnet, vol. 16,
nº 2, pp. 56-66, 2011.

[3] M. Bautista, «Marco de Referencia para la Formulación de un Plan de Continuidad de Negocio para TI, un caso de estudio.,» Rev. Técnica de energía, pp. 200-207, 2014.

[4]J. Aguirre y J. Iñiguez, «Implementación de un modelo de gestión por procesos para el área operativa del taller automotriz La ´France en función de la mejora de la productividad,» UIDE, QUito-Ecuador, 2018.

[5]AHPC, «Ayuda Humanitaria y Protección Civil», 2015. [Online]. Available: https://reliefweb.int/sites/reliefweb.int/files/resources/Guia_Operativa_CEPREDENAC_ECHO.pdf. [Last access: September 2019].

[6]M. Lopes, «Los modelos de gestión en los centros educativos de Iberoamérica. Retos y posibilidades», Rev. Iberoamericana de Educación, nº 67, pp. 11-14,
2014.

[7]F. J. G. ColinaI, S. C. J. Hernández y L. Salgado, «Gestión escolar y calidad educativa», Rev. cuabana de Educación Superior, vol. 2, pp. 206-2016, 2018.

[8]F. Proaño, «Modelo de gestión de TICs para la gerencia de división de informática de la Corporación Financiera Nacional, basado en gerencia estratégica de
procesos», Escuela Politécnica Nacional, Quito-Ecuador, 2012.

[9]J. Moreno y N. L. Sierna, «Modelo de Calidad para la Gestión de las TIC en el Proceso de Enseñanza para Instituciones Educativas Peruanas del Nivel Secundario», Rev. de la facultad de ingeniería industrial, vol. 17, nº 1, pp. 110-119, 2014.

[10]ISO, «ISOTools», [Online]. Available: https://www.isotools.org/normas/riesgos-y-seguridad/iso-22301/. [Last access: September 2019].

 

PDF (Español (España))
HTML (Español (España))

Downloads

Download data is not yet available.