Esta investigación denominada cultura de seguridad de información para la protección de activos informáticos en la Universidad Nacional Agraria de la Selva trató el problema referido al comportamiento de los usuarios y su relación con la protección de activos informáticos en términos de confidencialidad, integridad y disponibilidad. El objetivo principal fue evaluar la relación entre las dimensiones de concienciación, cumplimiento y apropiación de la cultura de seguridad de información y las dimensiones de la protección de activos, para esto se aplicó una encuesta para el diagnóstico a una muestra de 79 usuarios, además se incorporaron técnicas de ingeniería social para este proceso. Los resultados evidencian los niveles de concienciación, cumplimiento y apropiación de la universidad bajo estudio, los cuales oscilan en promedio entre el nivel de desarrollo y sostenib...

In different sectors of human activities, organizations are adopting information technology (IT) more intensively, exposing sensitive and confidential information of employees and customers. This situation makes public and private entities to develop standards and regulations to protect these information assets, ensuring confidentiality, integrity and availability. As a result of the study, a Balanced Scorecard model that links the critical security controls of the CIS is formulated and supported by an office IT application as a preliminary tool that facilitates the presentation of the results. Such results highlight that the highest proportion (80%) of the preliminary application that occurred in five institutions agrees with the proposed model and its usefulness for monitoring and managing security controls.

In different sectors of human activities, organizations are adopting information technology (IT) more intensively, exposing sensitive and confidential information of employees and customers. This situation makes public and private entities to develop standards and regulations to protect these information assets, ensuring confidentiality, integrity and availability. As a result of the study, a Balanced Scorecard model that links the critical security controls of the CIS is formulated and supported by an office IT application as a preliminary tool that facilitates the presentation of the results. Such results highlight that the highest proportion (80%) of the preliminary application that occurred in five institutions agrees with the proposed model and its usefulness for monitoring and managing security controls.