Guía de auditoría para la evaluación del control interno de seguridad de la información con enfoque COBIT 5: caso Universidad Católica de Cuenca (UCACUE).

Carlos Encalada Loja; Diego Cordero Guzmán

doi:10.26423/rctu.v3i3.204

Audit guide for the evaluation of internal control information security with focus Cobit 5: case Catholic University of Cuenca (UCACUE)

Authors

Carlos Encalada Loja Unidad Académica de Tecnologías de la Información y Comunicación - Universidad Católica de Cuenca, Ecuador
Diego Cordero Guzmán Unidad Académica de Tecnologías de la Información y Comunicación - Universidad Católica de Cuenca , Ecuador,

DOI:

https://doi.org/10.26423/rctu.v3i3.204

Keywords:

Guide audit, internal control, COBIT 5, information security, service security

Abstract

The aim of this work is generate a for IT Audit dedicated to evaluation of Internal Control Information Security aligned to the criteria of best practices of COBIT 5, with the intention to support better safety information in the Catholic University of Cuenca. COBIT 5 is taken as reference, summarized in the following phases: analysis of the organizational environment, determining the scope and objectives of the audit, identifying key players to be interviewed, preliminary approach context to be audited, determination resources needed to perform the audit work plan development, implementation of tasks and activities. In a phase of more detailed mapping goals and IT processes are executed after the main instruments for implementing the Audit Guide ere developed, which once implemented it possible to identify initiatives in information security provided by the organization, specifically the process DSS05 code COBIT 5, entitled "Managing the security services" was exploited. As a result a diagnosis of Internal Control Information Security at the Catholic University of Cuenca was obtained and could establish audit findings that were reflected in the final report. Terminal phase as the letter addressed to top management on the most critical findings requiring urgent attention was drawn.

Downloads

Download data is not yet available.

Downloads

PDF (Spanish)

Published

2016-12-23

Issue

Vol. 3 No. 3 (2016): (Enero - Junio 2017)

Section

Original Articles

License

El titular de los derechos de autor de la obra, otorga derechos de uso a los lectores mediante la licencia Creative Commons Atribución-NoComercial-CompartirIgual 4.0 Internacional. Esto permite el acceso gratuito inmediato a la obra y permite a cualquier usuario leer, descargar, copiar, distribuir, imprimir, buscar o vincular a los textos completos de los artículos, rastrearlos para su indexación, pasarlos como datos al software o usarlos para cualquier otro propósito legal.

Cuando la obra es aprobada y aceptada para su publicación, los autores conservan los derechos de autor sin restricciones, cediendo únicamente los derechos de reproducción, distribución para su explotación en formato de papel, así como en cualquier otro soporte magnético, óptico y digital.

How to Cite

Audit guide for the evaluation of internal control information security with focus Cobit 5: case Catholic University of Cuenca (UCACUE). (2016). UPSE Scientific and Technological Magazine, 3(3), 113-121. https://doi.org/10.26423/rctu.v3i3.204