The 14th International Conference on Electronics, Communications and Networks (CECNet 2024)

Abstract: Public organizations have the ongoing task of properly managing the security of the information they handle. The objective of this research is to analyze the security standards adopted by public organizations in Ecuador to improve their management of information security. The deductive method was applied for the review and analysis of appropriate standards for public institutions. As a result, information was obtained on the different security policies, standards and guidelines that apply, national and international public organizations. A Diagram of activities for the adoption of standards for public organizations resulted; a prototype standards-based Information Security Management Model; and an Information Security Management Matrix, from which the Risk Mitigation Percentage was calculated. It was concluded that maintaining high levels of security in public organizations requires the adoption of control standards in different areas and the collaboration of the different organizational and hierarchical levels of public organizations.

Biography: MOISÉS TOAPANTA is professor on of Computer Science at the Salesian Polytechnic University, Guayaquil, Ecuador. Coordinator research group: “Computing, Security and Information Technology for a Globalized World” “CSITGW”. He is an evaluator and accredited researcher of the Senescyt with No. REG-INV. 16-01530. He is a Computer Science Engineer. He obtained his MSc. In ICT at the National Polytechnic School. He completed his doctoral stay at the Department of Information Technology and Communications of the Polytechnic University of Cartagena UPCT, Spain. He obtained the degree of PhD. In Information Technology at the University of Guadalajara, Mexico. Dr. Toapanta is a reviewer and member of the scientific committee of several journal Q1, Q2, Q4 and conferences in the area of ICT, Engineering’s, and Computer Science. He has held scientific conferences in the area of ICT in several countries in the Americas, Europe, Asia; He has published 79 scientific articles in journals, database and conference proceedings of the IEEE Xplore Digital Library, ScienceDirect, Springer, ACM Digital Library, ProQuest others among indexed in Scimago, Scopus, EI Compendex, Web of Science. He has 29 years of experience in the ICT area, he has held important positions at the operational, tactical and strategic levels in public and private companies in Ecuador, Colombia and Peru such as: The Informatics Directorate of the Ecuador Navy, Computing Center of the Command of the Armed Forces of Ecuador, Informatics Directorate of the Municipality of the Metropolitan District of Quito, Computing Center General Comptroller of the State, Information Technology Advisory Communications Maintenance and Commercialization S.A. He has advised, developed and implemented several projects in the area of ICT, Engineering’s, and Computer Science at national and international level for 10 years. His research areas are: Strategic alignment of ICT, Distributed systems, Networks, Security and cryptography, Cybersecurity, Cyberbullying, Blockchain technologies and applications.