Campus Cañar
URI permanente para esta comunidadhttps://dspace.ucacue.edu.ec/handle/ucacue/56
Examinar
Examinando Campus Cañar por Asesores "Flores Urgilés, Cristhian Humberto"
Mostrando 1 - 7 de 7
- Resultados por página
- Opciones de ordenación
Ítem Acceso Abierto Análisis de riesgos y vulnerabilidades de TI para GAD El Tambo, manuales y políticas, en base a la norma ISO 27002(Universidad Católica de Cuenca campus Cañar, 2024) Angamarca Pomavilla, Oscar Fabian; Flores Urgilés, Cristhian Humberto; 0302578331This research work entitled "IT Risk and Vulnerability Analysis for the Information Technology Department of GAD El Tambo" aims to develop a comprehensive proposal for risk and vulnerability management in the IT department, ensuring the protection of technological assets and the continuity of municipal operations. This proposal is based on implementing a framework based on the ISO 27001 standard to improve information security and align IT practices with international standards. The starting point was a detailed analysis of the current situation of GAD El Tambo's IT department, including identifying critical assets and assessing the associated risks. In addition, an exhaustive review of the best practices and controls suggested by ISO 27001 and ISO 27002 was conducted, adapting these regulations to the specific needs of the municipality. Based on this analysis, a risk management model was developed to mitigate the identified threats and strengthen the department's resilience to potential security incidents. Key words: risk analysis, information management, IT vulnerability.Ítem Acceso Abierto Cumplimiento de la normativa de seguridad de la información, para la COAC Achik Inti del cantón Cañar, segmento 4 y su progresión al segmento 3, bajo la regulación de la SEPS.(Universidad Católica de Cuenca campus Cañar, 2024) Romero Loja, Israel Sebastian; Flores Urgilés, Cristhian Humberto; 0303040125This research analyzes compliance with information security regulations in the Achik Inti Savings and Credit Cooperative in the canton of Cañar during its transition from Segment 4 to Segment 3, in accordance with the regulations of the Superintendence of Popular and Solidarity Economy (SEPS). The study’s main objective is to identify gaps in information security and propose solutions to improve the cooperative’s processes. Three specific objectives are outlined: to conduct a theoretical review of information security in cooperatives, collect comprehensive data on the cooperative’s current state, and develop a plan that includes actions, resources and timelines to comply with Segment 3 regulations, focusing on improving policies, technological infrastructure, training and risk management. The mixed-methods approach combines qualitative and quantitative techniques, using ISO/IEC 27001:2022 as an evaluation framework, surveys and interviews with key personnel. Risk analysis centers on identifying critical assets and threats and implementing adequate security controls. Keywords: information security, ISO/IEC 27001, SEPS, risk management, regulatory compliance.Ítem Acceso Abierto Desarrollo de un modelo de inteligencia de negocios utilizando la metodología de Ralph Kimball para optimizar los procesos del Supermarket FoodCenter(Universidad Católica de Cuenca campus Cañar, 2024) Morocho Nivelo, Luis Fabian; Flores Urgilés, Cristhian Humberto; 0350139374This work focuses on developing a Business Intelligence (BI) model for the FoodCenter supermarket chain using Ralph Kimball's dimensional design methodology. This model aims to optimize decision-making by integrating and analyzing data from various business areas, such as sales, inventory, finance, and marketing. Ralph Kimball's methodology was selected for its emphasis on dimensional modeling, which facilitates the organization of large data volumes in a data warehouse designed specifically for analysis and efficient consultation. The developed BI system provides FoodCenter staff with a real-time data visualization interface, allowing access to key metrics, trends, and behavioral patterns that support strategic and operational planning. Among the main benefits of the model are the improvement in inventory management and the optimization of promotions and campaigns. In addition, it can make more accurate market demand forecasts. Keywords: business intelligence, Ralph Kimball methodology, decision-makingÍtem Acceso Abierto Diseño de una solución de inteligencia de negocio, para mejora de procesos en el Supermercado La Bodega Surtimax, del cantón Suscal.(Universidad Católica de Cuenca campus Cañar, 2024) Loja Cela, Maria Angelica; Flores Urgilés, Cristhian Humberto; 030283009-6This study aims to develop a Business Intelligence (BI) solution to optimize the processes of the supermarket La Bodega Surtimax, located in the canton of Suscal. The proposal seeks to improve strategic decision-making by analyzing key data to identify Consump tion patterns, manage inventories efficiently, and maximize profitability. In order to achieve this, an initial diagnosis of current processes was conducted, dentifying areas of opportunity and aligning them with the organization's objectives. Based on these findings, a BI architecture was designed to integrate data sources, visualization tools, and personalized reports, allowing management to make informed decisions in real-time. The proposal also introduces a model that prioritizes simplifying access to relevant information, reducing reliance on traditional methods, and promoting using technologies to anticipate market trends. In this way, this solution is expected to serve as a strategic guide for improving operational management and planning in the future. The BI model is designed to improve operational efficiency and respond swiftly to market needs, thereby ensuring a competitive advantage in the sector. Keywords: business intelligence, data mining, decision making.Ítem Acceso Abierto Modelo de madurez de los sistemas de información para la Cooperativa Yuyay Limitada del cantón Cañar, mediante COBIT 2019(Universidad Católica de Cuenca campus Cañar, 2024) Palchizaca Chimborazo, Rosa Alexandra; Flores Urgilés, Cristhian Humberto; 035016990-0This degree work aims to develop a model of maturity of information systems for the Cooperativa Yuyay Ltda., of the Cañar canton, based on the framework of COBIT 2019. Through this model, it seeks to evaluate and improve IT management, aligning its processes with the strategic objectives of the cooperative. The specific objectives include conducting a theoretical study on maturity models and COBIT 2019, evaluating the current maturity level of the cooperative's information systems, and designing a maturity model adapted to its needs and requirements. The methodology used in the study is quantitative and descriptive approach. Surveys were applied to IT staff, and a documentary review was conducted to analyze the current processes of the cooperative in terms of information technology. Subsequently, the results were evaluated using the practices recommended by COBIT 2019. The implementation of this model will improve operational efficiency, information security, and regulatory compliance, contributing to the sustainable and competitive development of the cooperative. Keywords: maturity model, COBIT 2019, IT management, systems.Ítem Acceso Abierto Propuesta de manual de políticas de seguridad de la información para la Cooperativa de Chunchi, del cantón Chunchi, bajo la norma ISO 27001(Universidad Católica de Cuenca campus Cañar, 2024) Díaz Usho, Carlos Reinaldo; Flores Urgilés, Cristhian Humberto; 0605716059This thesis presents the development of an Information Security Policy Manual for the Chunchi Savings and Credit Cooperative based on the ISO/IEC 27001:2013 standard. The project aims to address the lack of formalized security policies, which presents significant risks to the cooperative's sensitive information. This study identifies critical vulnerabilities and gaps by evaluating the current state of the cooperative's information security through surveys and risk analysis. Using the MAGERIT methodology, assets, threats, and vulnerabilities were analyzed to develop customized policies that ensure the information confidentiality, integrity, and availability. The proposed manual aligns with ISO 27001 standards, focusing on strengthening security practices, improving regulatory compliance, and fostering a security-oriented organizational culture. This work contributes to safeguarding sensitive data and improving the operational resilience and reputation of the cooperative. Keywords: information security, ISO 27001, security policy manual.Ítem Acceso Abierto Propuesta para la gestión de continuidad del negocio en el ámbito de TI para EMMAIPC-EP del cantón Cañar, basado en la norma ISO 22301(Universidad Católica de Cuenca campus Cañar, 2024) Pinguil Simbaina, Julio César; Flores Urgilés, Cristhian Humberto; 0302422696This thesis addresses business continuity management in the IT department of EMMAIPC-EP, focusing on ensuring operational resilience in the event of possible disruptions. The specific objectives include diagnosing the current state of IT infrastructure and business continuity practices, developing an IT risk management framework that identifies and prioritizes threats, and designing an action plan for implementing practical, scalable, and sustainable disaster recovery and business continuity strategies. The methodology used was descriptive and evaluative, combining qualitative analysis of the current situation with a quantitative approach to measure the impact of the identified risks. A comprehensive diagnosis of the IT infrastructure and current management practices was conducted through surveys and interviews with key personnel, which helped identify critical deficiencies in the preparedness for operational continuity. Based on these findings, an IT risk management framework aligned with international standards was developed, and a specific action plan was designed, including scalable and sustainable recovery strategies. The results of this investigation provide EMMAIPC-EP with a solid foundation to strengthen its incident response capabilities, ensuring the continuity of its critical operations and protecting its most valuable assets in crises. Keywords: business continuity, risk management, IT infrastructure.
