1,720,957 research outputs found
Propuesta de mejora para las Políticas de Seguridad de la Información del Banco Central de Costa Rica, basado en el estándar ISO/IEC 27002:2005
Full text linkProyecto Final de Graduación (Licenciatura en Administración de Tecnología de Información) Instituto Tecnológico de Costa Rica, Área Académica de Administración de Tecnologías de Información, 2014.El presente proyecto consiste en un análisis de las Políticas de Seguridad de la Información del Banco Central de Costa Rica y documentación complementaria, en el área de la Seguridad de la Información con respecto a la cobertura de los controles del estándar ISO/IEC 27002:2005. Lo anterior permite desarrollar un conjunto de propuestas de políticas, controles y lineamientos adaptables a las Políticas Específicas de la Seguridad de la Información, con el fin de mejorarlas en esta Entidad.
Lo primero que se logra identificar durante el desarrollo del proyecto es que las Políticas Específicas de Seguridad de la Información son la base del Sistema de Gestión de Seguridad de la Información del Banco, pues determinan la intención y el compromiso de la gerencia al trato y gestión de la Seguridad de la Información dentro de este. Además, estas funcionan como fuente primaria de conocimiento para el resto de la organización sobre cómo actuar en concordancia con los requisitos organizacionales de seguridad.
Específicamente sobre el planteamiento del documento de Políticas Específicas de Seguridad de la Información, se logra identificar que se encuentra estructurado según algunos de los dominios del estándar ISO/IEC 27002:2005, donde se identifica una sección introductoria del documento, posterior a ello se establecen los aspectos organizativos de Seguridad de la Información, para luego dirigirse directamente a la definición de políticas, controles y lineamientos de seguridad, los cuales se plantean para cuatro áreas: seguridad física y del entorno, gestión de comunicaciones y operaciones, control de accesos y el área de adquisición y por último, desarrollo y mantenimiento de sistemas. Según lo anterior, quedan fuera de las Políticas Específicas de Seguridad de la Información, los dominios de seguridad de los recursos humanos, gestión de incidentes de Seguridad de la Información, continuidad del negocio y el dominio de cumplimiento; sin embargo, algunas de las políticas de Seguridad de la Información cubren algunos de los controles considerados en dichos dominios.
vi
Basado en los resultados de la valoración, se logra identificar que el dominio para el cual hay un mayor número de controles cubiertos totalmente es el de gestión de incidentes de Seguridad de la Información y continuidad del negocio y por otro lado, el más desatendido por la documentación del Sistema de Gestión de Seguridad de la Información es el de seguridad de los recursos humanos. En general, se obtuvo como resultado que del total de 133 controles del estándar ISO/IEC 27002:2005, un porcentaje de 24,81% está cubierto totalmente por la documentación evaluada, un 39,85% en forma parcial y un 35,34%% de los controles no se cubre del todo y todos estos fueron aplicables a la organización.
Las propuestas de mejora consistieron en un conjunto de posibles políticas, controles y lineamientos que podrían ser adoptados por el Banco para cerrar la brecha existente con el estándar ISO/IEC 27002:2005, siempre y cuando se evalúe que efectivamente puedan ser adoptados por la organización, según el proceso de gestión de riesgos y los recursos organizacionales para implementar dichas medidas; aunque bien, se logró también identificar que existen buenas prácticas adoptadas por el Banco, pero que no se encuentran documentadas y por tal razón, se consideraron como parte de la brecha.This project consists of an analysis of the Information Security Policy of the Banco Central de Costa Rica and additional documents in the area of Information Security, regarding the coverage of standard ISO / IEC 27002: 2005 controls. This allows developing a set of proposed policies, controls and guidelines adaptable to the “Políticas específicas de la Seguridad de la Información” document, to improve the treatment of Information Security in the Bank.
The first aspect identified during the project development is that the Políticas específicas de la Seguridad de la Información are the base of the Information Security Management System of the Bank because they determine the intent and commitment of management to the treatment of Information Security within the Bank. Besides these Políticas específcas de la Seguridad de la Información are the primary sources of knowledge for the rest of the organization on how to act in accordance with organizational security requirements.
Specifically on the approach of the Políticas específicas de la Seguridad de la Información document, it is identified as structured according to some of the domains of the ISO/IEC 27002:2005 standard, because there are an introductory section of the document, after that it is identified the organizational aspects of Information Security, and then it is found the definition of policies, controls and safety guidelines, which are group by four areas: physical and environmental security, communications and operations management, access control and the area of acquisition, development and maintenance of systems. The Information Security domains of human resources, Information Security incident management, business continuity and the compliance domain are excluded from the Políticas específicas de la Seguridad de la Información; however, some other documents cover the controls in those domains.
viii
Based on the results of the assessment is identified that Information Security incident management and business continuity domains are the ones with greater number of fully covered controls, and secondly that the most unattended domain by the Information Security Management System documentation is the human resources domain. The overall result obtained is that from the 133 controls of ISO/IEC 27002:2005 standard, are fully covered by the assessed documentation a percentage of 24.81%, a 39.85% are partially covered and a 35.34% of controls are not covered at all, considering that all controls were applicable to the organization.
The proposed improvements consisted of a set of possible policies, controls and guidelines that could be adopted by the Bank to close the gap with the ISO / IEC 27002: 2005 standard, considering to evaluate the possible implementation of those policies, controls and guidelines but well, it was also possible to identify existing good practices adopted by the Bank. Also it should be considered to evaluate if Information Security good practices are implemented in the Bank but not documented as policies, controls or guidelines yet
Going Beyond Counting First Authors in Author Co-citation Analysis
Full text linkThe present study examines one of the fundamental aspects of author co-citation analysis (ACA) - the way co-citation
counts are defined. Co-citation counting provides the data on which all subsequent statistical analyses and mappings
are based, and we compare ACA results based on two different types of co-citation counting - the traditional type that
only counts the first one among a cited work's authors on the one hand and a non-traditional type that takes into
account the first 5 authors of a cited work on the other hand. Results indicate that the picture produced through this non-traditional author co-citation counting contains more coherent author groups and is therefore considerably clearer. However, this picture represents fewer specialties in the research field being studied than that produced through the traditional first-author co-citation counting when the same number of top-ranked authors is selected and analyzed. Reasons for these effects are discussed
Variations on the Author
Full text link“Variations on the Author” discusses two of Eduardo Coutinho’s recent films (Um Dia na Vida, from 2010, and Últimas Conversas, posthumously released in 2015) and their contribution to the general question of documentary authorship. The director’s filmography is characterized by a consistent yet self-effacing form of authorial self-inscription: Coutinho often features as an interviewer that rather than express opinions propels discourses; an interviewer that is good at listening. This mode of self-inscription characterizes him as an author who is not expressive but who is nonetheless markedly present on the screen. In Um Dia na Vida, however, Coutinho is completely absent form the image, while Últimas Conversas, on the contrary, includes a confessional prologue that moves the director from the margins to the center of his films. This article examines the ways in which these works stand out in the filmography of a director who offers new insights into the notion of cinematic authorship
Appropriate Similarity Measures for Author Cocitation Analysis
Full text linkWe provide a number of new insights into the methodological discussion about author cocitation analysis. We first argue that the use of the Pearson correlation for measuring the similarity between authors’ cocitation profiles is not very satisfactory. We then discuss what kind of similarity measures may be used as an alternative to the Pearson correlation. We consider three similarity measures in particular. One is the well-known cosine. The other two similarity measures have not been used before in the bibliometric literature. Finally, we show by means of an example that our findings have a high practical relevance.information science;Pearson correlation;cosine;similarity measure;author cocitation analysis
Dispelling the Myths Behind First-author Citation Counts
Full text linkWe conducted a full-scale evaluative citation analysis study of scholars in the XML research field to explore just how different from each other author rankings resulting from different citation counting methods actually are, and to demonstrate the capability of emerging data and tools on the Web in supporting more realistic citation counting methods. Our results contest some common arguments for the continued
use of first-author citation counts in the evaluation of scholars, such as high correlations between author rankings by first-author citation counts and other citation
counting methods, and high costs of using more realistic citation counting methods that are not well-supported by the ISI databases. It is argued that increasingly available digital full text research papers make it possible for citation analysis studies to go beyond what the ISI databases have directly supported and to employ more
sophisticated methods
koamabayili/VECTRON-author-checklist: VECTRON author checklist
No full textWe have done our best to complete the author checklist relating to the use of animals in the hut study. Note that the objective for the hut study was to evaluate the IRS treatment applications for residual efficacy against Anopheles mosquitoes, including the local An. coluzzii mosquito population. Cows were only used to attract mosquitoes into the huts and no tests were carried out directly on the cows. The author checklist is intended for use with studies where experiments are carried out on animals, which is why we have had such difficulty in completing this for the hut study, as many of the questions do not relate to how the cows were used
Author-wise bibliometric analysis based on entropy.
No full textAuthor-wise bibliometric analysis based on entropy.</p
Author Under Sail The Imagination of Jack London, 1893-1902
No full textIn Author Under Sail, Jay Williams offers the first complete literary biography of Jack London as a professional writer engaged in the labor of writing. It examines the authorial imagination in London's work, the use of imagination in both his fiction and nonfiction, and the ways he defined imagination in the creative process in his business dealings with his publishers, editors, and agents. In this first volume of a two-volume biography, Williams traverses the years 1893 to 1902, from London's "Story of a Typhoon" to The People of the Abyss. The Jack London who emerges in the pages of Author Under Sail is a writer whose partnership with publishers, most notably his productive alliance with George Brett of Macmillan, was one of the most formative in American literary history. London pioneered many author models during the heyday of realism and naturalism, blurring the boundaries of these popular genres by focusing on absorption and theatricality and the representation of the seen and unseen. London created an impassioned, sincere, and extremely personal realism unlike that of other American writers of the time. Author Under Sail is a literary tour de force that reveals the full range of London as writer, creative citizen, and entrepreneur at the same time it sheds light on the maverick side of machine-age literature.Intro -- Title Page -- Copyright Page -- Dedication -- Contents -- Acknowledgments -- Introduction -- 1. Spirit Truth -- 2. From Absorption to Theatricality and Back Again -- 3. "I Will Build a New Present" -- 4. Sons as Authors -- 5. Fathers as Publishers -- 6. The Daughter as Author -- 7. Lovers as Authors -- 8. At Sea with the Family -- 9. Yellow News, Yellow Stories -- 10. The Return Home -- Notes -- Bibliography -- Index -- About Jay WilliamsIn Author Under Sail, Jay Williams offers the first complete literary biography of Jack London as a professional writer engaged in the labor of writing. It examines the authorial imagination in London's work, the use of imagination in both his fiction and nonfiction, and the ways he defined imagination in the creative process in his business dealings with his publishers, editors, and agents. In this first volume of a two-volume biography, Williams traverses the years 1893 to 1902, from London's "Story of a Typhoon" to The People of the Abyss. The Jack London who emerges in the pages of Author Under Sail is a writer whose partnership with publishers, most notably his productive alliance with George Brett of Macmillan, was one of the most formative in American literary history. London pioneered many author models during the heyday of realism and naturalism, blurring the boundaries of these popular genres by focusing on absorption and theatricality and the representation of the seen and unseen. London created an impassioned, sincere, and extremely personal realism unlike that of other American writers of the time. Author Under Sail is a literary tour de force that reveals the full range of London as writer, creative citizen, and entrepreneur at the same time it sheds light on the maverick side of machine-age literature.Description based on publisher supplied metadata and other sources.Electronic reproduction. Ann Arbor, Michigan : ProQuest Ebook Central, YYYY. Available via World Wide Web. Access may be limited to ProQuest Ebook Central affiliated libraries
- …
