Importance of information security management in educational institutions with ITIL and ISO 27001
DOI:
https://doi.org/10.15381/risi.v15i1.23362Keywords:
Information security, educational institutions, ITIL, ISO 27001, educationAbstract
Education is one of the fundamental factors for human development, providing knowledge that helps in the development of the person as well as in society. As time has progressed, educational institutions have been implementing new methodologies and processes in teaching, where technology is a very important factor. Education, after the COVID-19 pandemic, was affected by cyber-attacks and even through virtual study, where information could be lost if security management is not correctly established. This security management has to be guided according to the established standards so this systematic review is carried out with the question: Is information security management important in different educational institutions by applying ITIL and ISO 27001? Therefore, our research objective is to identify the benefits of having security management in an educational institution by choosing ITIL and ISO 27001 as a framework. This search was achieved through reviews of articles published in databases such as Scielo, Google Academy, Scopus and Redalyc from 2017 to 2021.
Downloads
Downloads
Published
Issue
Section
License
Copyright (c) 2022 Evellyn Milles Duval Guevara Vega, José Ricardo Delgado Deza, Alberto Carlos Mendoza de los Santos
This work is licensed under a Creative Commons Attribution 4.0 International License.
AUTHORS RETAIN THEIR RIGHTS:
a. Authors retain their trade mark rights and patent, and also on any process or procedure described in the article.
b. Authors retain their right to share, copy, distribute, perform and publicly communicate their article (eg, to place their article in an institutional repository or publish it in a book), with an acknowledgment of its initial publication in the Revista de investigación de Sistemas e Informática.
c. Authors retain theirs right to make a subsequent publication of their work, to use the article or any part thereof (eg a compilation of his papers, lecture notes, thesis, or a book), always indicating its initial publication in the Revista de investigación de Sistemas e Informática (the originator of the work, journal, volume, number and date).
