Audit and cyber security in the commercial sector: assessing resilience to digital threats [Auditoría y ciberseguridad en el sector comercial: evaluación de resiliencia ante amenazas digitales]
DOI:
https://doi.org/10.62574/rmpi.v4iespecial.154Keywords:
appropriate technology, data protection, right to privacyAbstract
The study on auditing and cyber security in Ecuadorian commercial enterprises addresses the growing importance of protecting digital assets from evolving cyber threats. The objective is to analyse strategies for assessing and improving business resilience in the commercial sector against cyber threats through auditing, identifying best practices for effective integration into cybersecurity strategies. The methodology is descriptive. The results highlight the importance of staff's technical knowledge of cyber security and interest in implementing cyber security mechanisms. However, there is a lack of regular cyber security audits, which emphasises the need for greater awareness and preventive action in this area. The importance of effective collaboration between internal audit and cyber security to strengthen the security posture of companies is highlighted.
Downloads
References
Ávila-Coello, A. A. (2024). Seguridad de la información en instituciones públicas: desafíos y buenas prácticas en el contexto ecuatoriano [Information Security in Public Institutions: Challenges and Good Practices in the Ecuadorian Context]. Journal of Economic and Social Science Research, 4(2), 140–156. https://doi.org/10.55813/gaea/jessr/v4/n2/96
Bueno, G., & Haz, L. (2022). Ciberseguridad post Covid-19 y su impacto en las pymes del Ecuador [Post-covid-19 cybersecurity and its impact on Ecuador's SMEs]. Pro Sciences: Revista De Producción, Ciencias E Investigación, 6(46), 103–120. https://doi.org/10.29018/issn.2588-1000vol6iss46.2022pp103-120
Coronel-Suárez, I., & Quirumbay-Yagual, D. (2022). Seguridad informática, metodologías, estándares y marco de gestión en un enfoque hacia las aplicaciones web [IT security, methodologies, standards and management framework in a web application approach]. Revista Científica Y Tecnológica UPSE, 9(2), 97-108. https://doi.org/10.26423/rctu.v9i2.672
Flores-Álava, S., & Mena-Hernández, L. (2023). Propuesta de Buenas Prácticas para Mitigar Ciberataques en Usuarios de Entidades Financieras [Proposal for Good Practices to Mitigate Cyber-attacks on Users of Financial Institutions]. 593 Digital Publisher CEIT, 8(4), 159-173. https://doi.org/10.33386/593dp.2023.4.1652
Gomero-Cuadra, Raúl, & Sánchez-Calle, David. (2024). Ciberseguridad en servicios de apoyo al médico ocupacional de la ciudad de Lima. Estudio piloto [Cybersecurity in the support services to occupational physicians in the city of Lima. A pilot study]. Revista Médica Herediana, 35(1), 38-43. https://dx.doi.org/10.20453/rmh.v35i1.5298
Ojeda-Contreras, F., Moreno-Narváez, V., & Torres-Palacios, M. (2020). Gestión del riesgo y la ciberseguridad en el sector financiero popular y solidario del Ecuador [Risk management and cybersecurity in Ecuador's popular and solidarity-based financial sector]. CIENCIAMATRIA, 6(2), 192-219. https://doi.org/10.35381/cm.v6i2.366
Sancho-Hirare, Carolina. (2017). Ciberseguridad. Presentación del dossier [Cybersecurity. Presentation of the dossier]. URVIO Revista Latinoamericana de Estudios de Seguridad, (20), 8-15. https://doi.org/10.17141/urvio.20.2017.2859
Vargas-Borbúa, Robert, Recalde Herrera, Luis, & P. Reyes Ch., Rolando. (2017). Ciberdefensa y ciberseguridad, más allá del mundo virtual: Modelo ecuatoriano de gobernanza en ciberdefensa [Cyber-defense and cybersecurity, beyond the virtual world: Ecuadorian model of cyber-defense governance]. URVIO Revista Latinoamericana de Estudios de Seguridad, (20), 31-45. https://doi.org/10.17141/urvio.20.2017.2571
Vega, E. (2019). Seguridad de la Información: Principios y Prácticas [Information Security: Principles and Practices]. Alzamora: Editorial Área de Innovación y Desarrollo, S.L. https://doi.org/10.17993/tics.2021.4
Zuña-Macancela, Edgar René, Arce Ramírez, Ángel Alberto, Romero Berrones, Wilson Javier, & Soledispa Baque, César Jorge. (2019). Análisis de la seguridad de la información en las PYMES de la ciudad de Milagro [Analysis of the security of the information in the SMES of the city of MILAGRO]. Revista Universidad y Sociedad, 11(4), 487-492.
Zuñiga-Paredes, Andrea Raquel, Jalón Arias, Edmundo José, Andrade Olmedo, María Ernestina, & Giler Chango, José Leonardo. (2021). Análisis de seguridad informática en entornos virtuales de la Universidad regional autónoma de los Andes extensión Quevedo en tiempos de covid-19 [Analysis of computer security in virtual environments of the Autonomous regional University of the Andes extension Quevedo in times of covid-19]. Revista Universidad y Sociedad, 13(3), 454-459.
Published
How to Cite
Issue
Section
License
Copyright (c) 2024 Copyright: 2024 By the authors. This article is open access and distributed under the terms and conditions of the Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) license. https://creativecommons.org/licenses/by-n
This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
CC BY-NC-SA : This license allows reusers to distribute, remix, adapt and build upon the material in any medium or format for non-commercial purposes only, and only if attribution is given to the creator. If you remix, adapt or build upon the material, you must license the modified material under identical terms.
OAI-PMH URL: https://rperspectivasinvestigativas.org/index.php/multidiscipinaria/oai
