Next Article in Journal
Instagram and WhatsApp in Health and Healthcare: An Overview
Next Article in Special Issue
Cyber Conflicts as a New Global Threat
Previous Article in Journal / Special Issue
A Survey of Game Theoretic Approaches to Modelling Decision-Making in Information Warfare Scenarios
Article Menu

Export Article

Open AccessArticle
Future Internet 2016, 8(3), 36; doi:10.3390/fi8030036

Applying the Action-Research Method to Develop a Methodology to Reduce the Installation and Maintenance Times of Information Security Management Systems

1
Research and Development Department, Sicaman Nuevas Tecnologías, Tomelloso 13700, Spain
2
Research Group GSyA, University of Castilla-la Mancha, Ciudad Real 13700, Spain
3
Project Prometeo of Senescyt, University of the Armed Forces (ESPE), SanGolqui 170501, Ecuador
4
Research Group Alarcos, University of Castilla-la Mancha (UCLM), Ciudad Real 13700, Spain
This paper is an extended version of paper published in the VIII Congreso Iberoamericano de Seguridad Informática—CIBSI, Quito, Ecuador, 10–12 November 2015.
*
Author to whom correspondence should be addressed.
Academic Editor: Luis Javier Garcia Villalba
Received: 12 February 2016 / Revised: 15 June 2016 / Accepted: 8 July 2016 / Published: 22 July 2016
(This article belongs to the Collection Information Systems Security)
View Full-Text   |   Download PDF [1372 KB, uploaded 22 July 2016]   |  

Abstract

Society is increasingly dependent on Information Security Management Systems (ISMS), and having these kind of systems has become vital for the development of Small and Medium-Sized Enterprises (SMEs). However, these companies require ISMS that have been adapted to their special features and have been optimized as regards the resources needed to deploy and maintain them, with very low costs and short implementation periods. This paper discusses the different cycles carried out using the ‘Action Research (AR)’ method, which have allowed the development of a security management methodology for SMEs that is able to automate processes and reduce the implementation time of the ISMS. View Full-Text
Keywords: cybersecurity; Information Security Management Systems; ISMS; Action Research; process improvement; cost saving; time reduction; SMEs; ISO27001; ISO27002 cybersecurity; Information Security Management Systems; ISMS; Action Research; process improvement; cost saving; time reduction; SMEs; ISO27001; ISO27002
Figures

Figure 1

This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited. (CC BY 4.0).

Scifeed alert for new publications

Never miss any articles matching your research from any publisher
  • Get alerts for new papers matching your research
  • Find out the new papers from selected authors
  • Updated daily for 49'000+ journals and 6000+ publishers
  • Define your Scifeed now

SciFeed Share & Cite This Article

MDPI and ACS Style

Santos-Olmo, A.; Sánchez, L.E.; Rosado, D.G.; Fernández-Medina, E.; Piattini, M. Applying the Action-Research Method to Develop a Methodology to Reduce the Installation and Maintenance Times of Information Security Management Systems. Future Internet 2016, 8, 36.

Show more citation formats Show less citations formats

Note that from the first issue of 2016, MDPI journals use article numbers instead of page numbers. See further details here.

Related Articles

Article Metrics

Article Access Statistics

1

Comments

[Return to top]
Future Internet EISSN 1999-5903 Published by MDPI AG, Basel, Switzerland RSS E-Mail Table of Contents Alert
Back to Top