Interaction between Local Regulations and the Implementation of ISO 27001 in Public Transportation in Latin America: A Systematic Review

Authors

DOI:

https://doi.org/10.15381/risi.v17i2.29717

Keywords:

Data protection, ISO 27001, Public transport, Local regulations, Latin America

Abstract

The Information security is vital in public transport in Latin America, where data protection laws are changing. ISO 27001 offers a useful framework, but its implementation faces several obstacles. This study reviews how local regulations interact with the adoption of ISO 27001 in this sector, identifying factors that affect its effectiveness. Using the PRISMA method, searches were carried out in databases such as Scopus and Web of Science, limiting the review to articles from the last eight years. The findings reveal that local laws, such as the General Data Protection Law in Brazil and Law 1581 in Colombia, can facilitate or hinder the adoption of the standard. Companies face barriers such as lack of regulatory clarity and high costs, although government support can be a facilitator. The need to align international regulations and standards to improve information security in public transportation is emphasized.

Downloads

Download data is not yet available.

Downloads

Published

2024-12-31

Issue

Vol. 17 No. 2 (2024)

Section

Artículos

License

Copyright (c) 2024 Rony Choque Moran

Creative Commons License

This work is licensed under a Creative Commons Attribution 4.0 International License.

AUTHORS RETAIN THEIR RIGHTS:

a. Authors retain their trade mark rights and patent, and also on any process or procedure described in the article.

b. Authors retain their right to share, copy, distribute, perform and publicly communicate their article (eg, to place their article in an institutional repository or publish it in a book), with an acknowledgment of its initial publication in the Revista de investigación de Sistemas e Informática. 

c. Authors retain theirs right to make a subsequent publication of their work, to use the article or any part thereof (eg a compilation of his papers, lecture notes, thesis, or a book), always indicating its initial publication in the Revista de investigación de Sistemas e Informática (the originator of the work, journal, volume, number and date).

How to Cite

[1]
“Interaction between Local Regulations and the Implementation of ISO 27001 in Public Transportation in Latin America: A Systematic Review”, Rev.Investig.sist.inform., vol. 17, no. 2, pp. 163–168, Dec. 2024, doi: 10.15381/risi.v17i2.29717.