ANALYSIS OF RISK MANAGEMENT IN INFORMATION TECHNOLOGY UNITS

Abstract

An analysis of the risk conditions present in the Information Technology (IT) units is presented, where the academic data and information of the universities rest. In this study the personnel of the IT units of different institutions of the province of Manabí in Ecuador have been evaluated. For this, the academic profiles and their participation in the management of information protection have been considered. For the execution of this work, surveys have been carried out on IT personnel, with a total of 360 people surveyed that make up the sample. The analysis made it possible to verify the levels of security and quality of the Information Technology services offered by the departments of the evaluated institutions, in turn it was possible to verify the knowledge management present in the 40 institutions studied.

Keywords: Information Technology, Risk Management, Computer Security, Information Protection.

References

[1]I. Velitchkov, «Integration of IT Strategy and Enterprise Architecture Models,» de Proceedings of the 9th International Conference on Computer Systems and Technologies and Workshop for PhD Students in Computing, , New York, 2008.

[2]E. Kozlova, U. Hasenkamp and E. Kopanakis, «Use of IT Best Practices for Non-IT Services,» de Annual SRII Global Conference, 2012.

[3]A. Hochstein, R. Zarnekow and W. Brenner, «ITIL as common practice reference model for IT service management: formal assessment and implications for practice, » IEEE, pp. 704-710, 2005.

[4]C. Braun and R. Winter, «Integration of IT Service Management into Enterprise Architecture,» de Proceedings of the 2007 ACM Symposium on Applied Computing, New York, 2007.

[5]S. Galup, J. J. Quan, R. Dattero and S. Conger, « Information Technology Service Management: An Emerging Area for Academic Research and Pedagogical Development, » de Conference on Computer Personnel Research: The Global Information Technology Workforce, New York, 2007.

[6]R. Bonilla, S. Carolina, Z. Rendón and A. Dolores, «Propuesta de procesos para la fase de operación de los servicios de tecnología fundamentado en ITIL, para Bio Agencia de Comunicación,» 2014.

[7]Y. Viteri, M. Cano, A. Zambrano and C. Minaya, «Evaluación de las incidencias y riesgos presentes en la infraestructura tecnológica de la Universidad Layca Eloy Alfaro de MAnabí-Ecuador,» Revista Universidad, Ciencia y Tecnología, vol. 23, nº 94, 2019. 

[8]N. Ávalos, H. Fabricio, E. Navia and J. Francisco, «Propuesta de gestión tecnológica para la defensoría pública del Ecuador alineada al marco regulatorio del sector público,» Ecuador, 2015.

[9]V. López and W. Napoléon, «Guía de evaluación de la gestión de TI con aplicación de COBIT Y COSO en el sector público ecuatoriano,» Ecuador, 2014.

[10]B. Oviedo, E. Shuma and A. Gracia, «Análisis de herramientas de códigos abiertos que permitan la seguridad de la data en las universidad técnica estatal de Quevedo,» Revista Universidad, Ciencia y Tecnología, vol. 23, nº 94, 2019.