Gestão da segurança da informação no ambiente do TCE/RN: uma abordagem em conformidade com requisitos legais
This paper aims to show how information security management is carried out at the Court of Accounts of the State of Rio Grande do Norte - TCE/ RN. As a specific objective, we suggest the creation of technical standards, a commission and a treatment and response team for information security inci...
Na minha lista:
| Autor principal: | |
|---|---|
| Outros Autores: | |
| Formato: | postGraduateThesis |
| Idioma: | pt_BR |
| Publicado em: |
Universidade Federal do Rio Grande do Norte
|
| Assuntos: | |
| Endereço do item: | https://repositorio.ufrn.br/handle/123456789/44488 |
| Tags: |
Adicionar Tag
Sem tags, seja o primeiro a adicionar uma tag!
|
| Resumo: | This paper aims to show how information security management is carried
out at the Court of Accounts of the State of Rio Grande do Norte - TCE/
RN. As a specific objective, we suggest the creation of technical standards,
a commission and a treatment and response team for information security
incidents. Their responsibilities will only be defined after the appointment of
the members by the President of the Court. Therefore, in the Theoretical
Foundation, we describe the main aspects related to Information Security
as a way to guarantee and minimize the risks that can compromise the
information guarded by the Court. Information in the face of the challenges
to its administration is considered one of the most important assets of a
public body or company. As a result, we delivered the draft information
security policy, some technical standards and a safety primer, both of which
have yet to be approved. |
|---|