Mostrar el registro sencillo del ítem
Normas ISO y marcos de referencia para gobernanza de las TIC. revisión general
dc.contributor.author | Vecino Pico, Hugo | spa |
dc.date.accessioned | 2020-10-27T00:20:07Z | |
dc.date.available | 2020-10-27T00:20:07Z | |
dc.date.issued | 2017-06-01 | |
dc.identifier.issn | 2539-2115 | |
dc.identifier.issn | 1657-2831 | |
dc.identifier.uri | http://hdl.handle.net/20.500.12749/8853 | |
dc.description.abstract | Actualmente existen diferentes normas, modelos y marcos de referencia en el tema de la gobernanza de las TIC, de manera general puede decirse que estos pretenden mostrar un camino a las empresas para que puedan alinear la misión corporativa con el uso adecuado, eficiente y eficaz de la tecnología, claramente en busca de conceptos como calidad, seguridad, disminución del riesgo, continuidad del servicio entre otros. En este artículo se hace una revisión de las principales normas internacionalmente reconocidas y asociadas al tema de la gobernanza de las TIC, con la intención de aproximar al lector interesado en este tópico, especialmente directores de TI o Chief information officer (CIO). También está dirigido a investigadores en el área, para que tengan una visión general de la normatividad vigente ya que estas buenas prácticas han sido validadas en su mayoría por más de 150 países. | spa |
dc.format.mimetype | application/pdf | spa |
dc.language.iso | spa | spa |
dc.publisher | Universidad Autónoma de Bucaramanga UNAB | |
dc.relation | https://revistas.unab.edu.co/index.php/rcc/article/view/3199/2762 | |
dc.relation | /*ref*/B. Gupta, S. Dasgupta, and A. Gupta, “Adoption of ICT in a government organization in a developing country: An empirical study,” J. Strateg. Inf. Syst., vol. 17, no. 2, pp. 140–154, 2008. | |
dc.relation | /*ref*/P. Weill and J. W. Ross, “How Top Performers Manage IT Decisions Rights for Superior Results,” IT Gov., no. Harvard Business School Press Boston, Massachusetts, pp. 1–10, 2004. | |
dc.relation | /*ref*/P. Weill and J. Ross, “A Matrixed Approach to Designing IT Governance,” MIT Sloan Manag. Rev., vol. 46, no. 2, pp. 26–34, 2005. | |
dc.relation | /*ref*/C. M. F. Sánchez and M. P. Velthius, Modelo para el gobierno de las TIC basado en las normas ISO. AENOR Ediciones, 2012. | |
dc.relation | /*ref*/Asociación Española para la Calidad, “Gestión TIC,” 2017. [Online]. Available: https://www.aec.es/web/guest/centro- conocimiento/gestion-tic. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/M. Ballester, “JOnline: Gobierno de las TIC ISO/IEC 38500,” 2010. [Online]. Available: https://www.isaca.org/Journal/archives/2010/Volume-1/Pages/Gobierno-de-las-TIC-ISO-IEC-385001.aspx?utm_referrer=. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISOTools, “¿Qué es la ISO 27001?,” 2017. [Online]. Available: https://www.isotools.org/normas/riesgos-y-seguridad/iso-27001. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISO27000.es, “ISO27000.es - El portal de ISO 27001 en español. Gestión de Seguridad de la Información.,” 2017. [Online]. Available: http://www.iso27000.es/iso27000.html. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/M. C. P. Alonso, “Seguridad de la información en el Uruguay: políticas de Estado en la administración pública,” Rev. la Asoc. Escribanos del Uruguay, vol. 97, pp. 137–156, 2011. | |
dc.relation | /*ref*/K. Hajdarevic and C. Pattinson, “Information security measurement infrastructure for KPI visualization,” Int. Conv. Inf. Commun. Technol. Electron. Microelectron. MIPRO, pp. 1543–1548, 2012. | |
dc.relation | /*ref*/A. Leitner and I. Schaumuller-Bichl, “ARiMA - A New Approach to Implement ISO/IEC 27005,” in 2009 2nd International Symposium on Logistics and Industrial Informatics, 2009, pp. 1–6. | |
dc.relation | /*ref*/M. M. Cabero, “Certificación de calidad en los archivos. Análisis y prospectiva,” Rev. Española Doc. Científica, vol. 34, no. 3, pp. 447–460, 2011. | |
dc.relation | /*ref*/AENOR, “Certificación ISO 20000 del Sistema de Gestión de Servicios de Tecnologías de la Información,” 2016. [Online]. Available: https://www.aenor.es/aenor/certificacion/calidad/calidad_serviciosti_20000.asp#.WhWHs1WnFph. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/SGS, “ISO 20000 - CERTIFICACIÓN DE TI,” 2017. [Online]. Available: http://www.sgs.co/es-es/health-safety/quality-health-safety-and-environment/risk-assessment-and-management/security-management/iso-20000-it-certification. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISO, “ISO/IEC 19770-5:2015(en) Information technology — IT asset management — Overview and vocabulary — Part 5,” 2015. [Online]. Available: https://www.iso.org/obp/ui#iso:std:iso-iec:19770:-5:ed-2:v1:en. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISO, “ISO/IEC 12207:2008 Systems and software engineering -- Software life cycle processes,” 2008. [Online]. Available: https://www.iso.org/standard/43447.html. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/EcuRED, “ISO 15504,” 2017. [Online]. Available: https://www.ecured.cu/ISO_15504. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/NYCE Colombia, “ISO/IEC 29110,” 2016. [Online]. Available: http://nycecolombia.co/isoiec-29110. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISO, “ISO/IEC TR 29110-5-1-2:2011 Software engineering -- Lifecycle profiles for Very Small Entities (VSEs) -- Part 5-1-2: Management and engineering guide: Generic profile group: Basic profile,” 2011. [Online]. Available: https://www.iso.org/standard/51153.html. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/GT26, “Grupo de Trabajo AEN/CTN71/SC7/GT26 Pruebas de Software. ISO/IEC/IEEE 29119 Software Testing Standard,” 2017. [Online]. Available: http://in2test.lsi.uniovi.es/gt26/. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISO, “ISO/IEC 25000:2014 Systems and software engineering -- Systems and software Quality Requirements and Evaluation (SQuaRE) -- Guide to SQuaRE,” 2014. [Online]. Available: https://www.iso.org/standard/64764.html. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/AENOR, “UNE-EN ISO 22301:2015,” 2015. [Online]. Available: http://www.aenor.es/aenor/normas/normas/fichanorma.asp?tipo=N&codigo=N0054336#.WhWMxlWnFpg. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/AXELOS, “What is ITIL® Best Practice?,” 2017. [Online]. Available: https://www.axelos.com/best-practice-solutions/itil/what-is-itil. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/ISACA, “Acerca de ISACA,” 2017. [Online]. Available: http://www.isaca.org/spanish/Pages/default.aspx. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/Microsoft, “Información general de CMMI,” 2017. [Online]. Available: https://msdn.microsoft.com/es-es/esco/library/ee461556.aspx. [Accessed: 21-Nov-2017]. | |
dc.relation | /*ref*/CMMI Institute, “What Is Capability Maturity Model Integration (CMMI)®?,” 2017. [Online]. Available: http://cmmiinstitute.com/capability-maturity-model-integration. [Accessed: 21-Nov-2017]. | |
dc.relation.uri | https://revistas.unab.edu.co/index.php/rcc/article/view/3199 | |
dc.rights | Derechos de autor 2017 Revista Colombiana de Computación | |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-sa/4.0/ | * |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/2.5/co/ | |
dc.rights.uri | http://creativecommons.org/licenses/by-nc-nd/2.5/co/ | |
dc.source | Revista Colombiana de Computación; Vol. 18 Núm. 1 (2017): Revista Colombiana de Computación; 70-81 | |
dc.subject | Gobernanza de las TIC | |
dc.subject | Normas ISO | |
dc.subject | ITIL | |
dc.subject | COBIT | |
dc.subject | CMMI | |
dc.title | Normas ISO y marcos de referencia para gobernanza de las TIC. revisión general | spa |
dc.title.translated | ISO standards and reference framework for ICT governance. General revision | eng |
dc.type.driver | info:eu-repo/semantics/article | |
dc.type.local | Artículo | spa |
dc.type.coar | http://purl.org/coar/resource_type/c_7a1f | |
dc.subject.keywords | ICT governance | eng |
dc.subject.keywords | Standards ISO | eng |
dc.subject.keywords | ITIL | eng |
dc.subject.keywords | COBIT | eng |
dc.subject.keywords | CMMI | eng |
dc.subject.keywords | Technological innovations | eng |
dc.subject.keywords | Developing | eng |
dc.subject.keywords | Research | eng |
dc.subject.keywords | Computer's science | eng |
dc.subject.keywords | Systems engineer | eng |
dc.subject.keywords | Information and communication technologies | eng |
dc.subject.keywords | ISO standards | eng |
dc.subject.keywords | Frames | eng |
dc.identifier.instname | instname:Universidad Autónoma de Bucaramanga UNAB | spa |
dc.type.hasversion | info:eu-repo/semantics/acceptedVersion | |
dc.rights.accessrights | info:eu-repo/semantics/openAccess | spa |
dc.relation.references | [1] B. Gupta, S. Dasgupta, and A. Gupta, "Adoption of ICT in a government organization in a developing country: An empirical study,"1. Strateg. Inf. Syst., vol. 17, no. 2, pp. 140-154, 2008. | |
dc.relation.references | [2] P. Weill and J. W. Ross, "How Top Performers Manage IT Decisions Rights for Superior Results," IT Gov., no. Harvard Business School Press Boston, Massachusetts, pp. 1-10, 2004. | |
dc.relation.references | [3] P. Weill and J. Ross, "A Matrixed Approach to Designing IT Governance;' MIT Sloan Manag. Rev., vol. 46, no. 2, pp. 26-34, 2005. | |
dc.relation.references | [4] C. M. F. Sanchez and M. P. Velthius, Modelo para el gobierno de las TIC bosado en las normas ISO. AENOR Ediciones, 2012. | |
dc.relation.references | [5] Asociaci6n Espanola para la Calidad, "Gestion TIC;' 2017. [Online]. Available: https://www.aec.es/web/guest/ centro- conocimiento/gestion-tic. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [6] M. Ballester, Gobierno de las TIC ISO/IEC 38500," 2010. [Online]. Available: https://www.isaca.org/ Journal/archives/2010/Volume-1/Pages/Gobierno-de-las-TIC-ISO-IEC-385001.aspx?utm_referrem [Accessed: 21-Nov-2017]. | |
dc.relation.references | [7] ISOTools, "glue es la ISO 27001?," 2017. [Online]. Available: https://www.isotools.org/normas/riesgos-y-seguridad/iso-27001. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [8] 15027000.es, "15027000.es - El portal de ISO 27001 en espaiiol. Gestion de Seguridad de la Informacion.," 2017. [Online]. Available: http://www.iso27000.es/iso27000.html. [Accessed: 21-Nov-2017). | |
dc.relation.references | [9] M. C. P. Alonso, "Seguridad de la informaci6n en el Uruguay: politicas de Estado en la administraci6n pOblica," Rev. la Asoc. Escribanos del Uruguay, vol. 97, pp. 137-156,2011. | |
dc.relation.references | [10] K. Hajdarevic and C. Pattinson, "Information security measurement infrastructure for KPI visualization," Int. Cony. Inf. Commun. TechnoL Electron. Microelectron. MIPRO, pp. 1543-1548,2012. | |
dc.relation.references | [11] A. Leitner and I. Schaumuller-Bichl, "ARiMA - A New Approach to Implement ISO/IEC 27005," in 2009 2nd International Symposium on Logistics and Industrial Informatics, 2009, pp. 1-6. | |
dc.relation.references | [12] M. M. Cabero, "Certificacion de calidad en los archivos. Analisis y prospectiva," Rev. Espahola Doc. Cientifica, vol. 34, no. 3, pp. 447-460,2011. | |
dc.relation.references | [13] AENOR, "Certificacion ISO 20000 del Sistema de Gestion de Servicios de Tecnologias de la Informacion," 2016. [Online]. Available: https://www.aenoces/aenorkertificacion/calidad/calidad_serviciosti_20000.aspt WhWHs1WnFph. [Accessed: 21-Nov-2017). | |
dc.relation.references | [14] SGS, "ISO 20000 - CERTIFICACION DE TI," 2017. [Online]. Available: http://www.sgs.co/es-es/health-safety/ quality-health-safety-and-environment/risk-assessment-and-ma nage ment/security-ma nage ment/iso-20000- it-certification. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [15] ISO, "ISO/IEC 19770-5:2015(en) Information technology — IT asset management — Overview and vocabulary —Part 5," 2015. [Online]. Available: https://www.iso.org/obp/uittiso:stdiso-iec:19770:-5:ed-2:v1:en. [Accessed: 21-Nov-2017). | |
dc.relation.references | [16] ISO, "ISO/IEC 12207:2008 Systems and software engineering -- Software life cycle processes," 2008. [Online]. Available: https://www.iso.org/standard/43447.html. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [17] EcuRED, "ISO 15504," 2017. [Online]. Available: https://www.ecured.calS0_15504. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [17] EcuRED, "ISO 15504," 2017. [Online]. Available: https://www.ecured.cu/ISO_15504. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [18] NYCE Colombia, "ISO/IEC 29110," 2016. [Online]. Available: http://nycecolombia.co/isoiec-29110. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [19] ISO, "ISO/IEC TR 29110-5-1-2:2011 Software engineering -- Lifecycle profiles for Very Small Entities (VSEs) --Part 5-1-2: Management and engineering guide: Generic profile group: Basic profile;' 2011. [Online]. Available: https://www.iso.org/standard/51153.html. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [20] GT26, "Grupo de Trabajo AEN/CTN71/SC7/GT26 Pruebas de Software. ISO/IEC/IEEE 29119 Software Testing Standard," 2017. [Online]. Available: http://in2test.lsi.uniovi.es/gt26/. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [21] ISO, "ISO/IEC 25000:2014 Systems and software engineering -- Systems and software Quality Requirements and Evaluation (SQuaRE) -- Guide to SQuaRE," 2014. [Online]. Available: https://www.iso.org/standard/64764.html. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [22] AENOR, "UNE-EN ISO 22301:2015," 2015. [Online]. Available: http://www.aenor.es/aenor/normas/normas/ fichanorma.asp?tipo=N&codigo=N005433611.WhWMxIWnFpg. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [23] AXELOS, "What is ITIL° Best Practice?," 2017. [Online]. Available: https://www.axelos.com/best-practice-solutions/itil/what-is-itil. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [24] ISACA, "Acerca de ISACA," 2017. [Online]. Available: http://www.isaca.org/spanish/Pages/default.aspx. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [25] Microsoft, "Informacion general de CMMI," 2017. [Online]. Available: https://msdn.microsoft.com/es-es/esco/ library/ee461556.aspx. [Accessed: 21-Nov-2017]. | |
dc.relation.references | [26] CMMI Institute, "What Is Capability Maturity Model Integration (CMMI)”," 2017. [Online]. Available: http:// cmmiinstitute.com/capability-maturity-model-integration. [Accessed: 21-Nov-2017]. | |
dc.contributor.googlescholar | Vecino Pico, Hugo [vUsDlKEAAAAJ] | spa |
dc.contributor.orcid | Vecino Pico, Hugo [0000-0002-5935-0641] | spa |
dc.subject.lemb | Investigaciones | spa |
dc.subject.lemb | Ciencias de la computación | spa |
dc.subject.lemb | Ingeniería de sistemas | spa |
dc.subject.lemb | Tecnologías de la información y comunicación | spa |
dc.identifier.repourl | repourl:https://repository.unab.edu.co | |
dc.description.abstractenglish | Currently there are different norms, models and frames of reference in the topic of ICT Governance, in general, it can be said that these are intended to show a way for companies to align corporate mission with appropriate, efficient and effective use Of technology, clearly looking for concepts such as quality, safety, risk reduction, service continuity among others; This article reviews the main internationally recognized norms associated with the topic of ICT Governance, with the intention of bringing the reader interested in this topic, especially IT directors or CIO, To be directed to researchers in the area, so that they have an overview of the current regulations since these good practices have been validated in most of them by more than 150 countries. | eng |
dc.subject.proposal | Innovaciones tecnológicas | spa |
dc.subject.proposal | Desarrollo | spa |
dc.subject.proposal | Normas iso | spa |
dc.subject.proposal | Marcos | spa |
dc.identifier.doi | 10.29375/25392115.3199 | |
dc.type.redcol | http://purl.org/redcol/resource_type/CJournalArticle | |
dc.rights.creativecommons | Attribution-NonCommercial-ShareAlike 4.0 International | * |