{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,25]],"date-time":"2025-03-25T20:36:12Z","timestamp":1742934972151,"version":"3.40.3"},"publisher-location":"Cham","reference-count":23,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031652844"},{"type":"electronic","value":"9783031652851"}],"license":[{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2024,1,1]],"date-time":"2024-01-01T00:00:00Z","timestamp":1704067200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2024]]},"DOI":"10.1007\/978-3-031-65285-1_6","type":"book-chapter","created":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T05:25:29Z","timestamp":1721885129000},"page":"71-85","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Hybrid Information Security Framework Based on ISO\/IEC 27005:2022 and the NIST Framework for the Ministry of Education of Ecuador (TIC)"],"prefix":"10.1007","author":[{"given":"Jayli","family":"De la Torre","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Daisy","family":"Imbaquingo","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jaime","family":"Llumiquinga","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2024,7,26]]},"reference":[{"key":"6_CR1","unstructured":"Iso. Information security, cybersecurity and privacy protection-Guidance on managing information security risks (2022)"},{"key":"6_CR2","unstructured":"Asamblea Nacional. Ley Org\u00e1nica De Protecci\u00f3n De Datos Personales (2021)"},{"issue":"10","key":"6_CR3","doi-asserted-by":"publisher","first-page":"5171","DOI":"10.1007\/s11227-018-2479-2","volume":"74","author":"A Ibrahim","year":"2018","unstructured":"Ibrahim, A., Valli, C., McAteer, I., Chaudhry, J.: A security review of local government using NIST CSF: a case study. J. Supercomputing 74(10), 5171\u20135186 (2018). https:\/\/doi.org\/10.1007\/s11227-018-2479-2","journal-title":"J. Supercomputing"},{"key":"6_CR4","unstructured":"Asamblea Nacional. Ley Org\u00e1nica De Telecomunicaciones (2015)"},{"issue":"3","key":"6_CR5","doi-asserted-by":"publisher","first-page":"965","DOI":"10.1007\/s11219-019-09494-x","volume":"28","author":"J Verdugo","year":"2020","unstructured":"Verdugo, J., Rodr\u00edguez, M.: Assessing data cybersecurity using ISO\/IEC 25012. Softw. Qual. J. 28(3), 965\u2013985 (2020). https:\/\/doi.org\/10.1007\/s11219-019-09494-x","journal-title":"Softw. Qual. J."},{"issue":"4","key":"6_CR6","doi-asserted-by":"publisher","first-page":"481","DOI":"10.1007\/s10278-014-9746-4","volume":"28","author":"J Guti\u00e9rrez-Mart\u00ednez","year":"2015","unstructured":"Guti\u00e9rrez-Mart\u00ednez, J., N\u00fa\u00f1ez-Gaona, M.A., Aguirre-Meneses, H.: Business model for the security of a large-scale PACS, compliance with ISO\/27002:2013 standard. J. Digit. Imaging 28(4), 481\u2013491 (2015). https:\/\/doi.org\/10.1007\/s10278-014-9746-4","journal-title":"J. Digit. Imaging"},{"key":"6_CR7","doi-asserted-by":"crossref","unstructured":"Atymtayeva, L., Bortsova, G., Inoue, A.: Methodology and Ontology of Expert System for Information Security Audit. SCIS-ISIS 2012 (2012)","DOI":"10.1109\/SCIS-ISIS.2012.6505287"},{"key":"6_CR8","doi-asserted-by":"publisher","unstructured":"Safitri, E.H.N., Kabetta, H.: Cyber-risk management planning using NIST CSF V1.1, ISO\/IEC 27005:2018, and NIST SP 800\u201353 Revision 5 (A Study Case to ABC Organization). In: 2023 IEEE International Conference on Cryptography, Informatics, and Cybersecurity (ICoCICs), pp. 332\u2013338. IEEE (2023). https:\/\/doi.org\/10.1109\/ICoCICs58778.2023.10277652","DOI":"10.1109\/ICoCICs58778.2023.10277652"},{"key":"6_CR9","doi-asserted-by":"publisher","unstructured":"Amiruddin, A., Afiansyah, H.G., Nugroho, H.A.: Cyber-risk management planning using NIST CSF v1.1, NIST SP 800\u201353 Rev. 5, and CIS Controls v8. In: Proceedings - 3rd International Conference on Informatics, Multimedia, Cyber, and Information System, ICIMCIS 2021, Institute of Electrical and Electronics Engineers Inc., pp. 19\u201324 (2021). https:\/\/doi.org\/10.1109\/ICIMCIS53775.2021.9699337","DOI":"10.1109\/ICIMCIS53775.2021.9699337"},{"key":"6_CR10","doi-asserted-by":"publisher","unstructured":"Agrawal, V.: A framework for the information classification in ISO 27005 standard. In: Proceedings - 4th IEEE International Conference on Cyber Security and Cloud Computing, CSCloud 2017 and 3rd IEEE International Conference of Scalable and Smart Cloud, SSC 2017, Institute of Electrical and Electronics Engineers Inc., pp. 264\u2013269 (2017). https:\/\/doi.org\/10.1109\/CSCloud.2017.13","DOI":"10.1109\/CSCloud.2017.13"},{"key":"6_CR11","unstructured":"Ter\u00e1n Tamayo, L.F., Meier, A.: Escuela Superior Polit\u00e9cnica del Litoral (Ecuador), IEEE Computer Society, Institute of Electrical and Electronics Engineers. Region 9, and Institute of Electrical and Electronics Engineers. In: 2018 Fifth International Conference on eDemocracy & eGovernment (ICEDEG)\u202f: Quito, Ecuador\u202f: eDEM & eGOV\u202f: April 4\u20136, 2018 (2018)"},{"key":"6_CR12","doi-asserted-by":"publisher","unstructured":"Zhang, H.G., Han, W.B., Lai, X.J., Lin, D.D., Ma, J.F., Li, J.H.: Survey on cyberspace security. Science China Information Sciences, vol. 58, no. 11. Science in China Press (2015). https:\/\/doi.org\/10.1007\/s11432-015-5433-4","DOI":"10.1007\/s11432-015-5433-4"},{"issue":"11","key":"6_CR13","doi-asserted-by":"publisher","first-page":"16951","DOI":"10.1007\/s11042-022-14036-y","volume":"82","author":"G Sharma","year":"2023","unstructured":"Sharma, G., Vidalis, S., Menon, C., Anand, N.: Analysis and implementation of semi-automatic model for vulnerability exploitations of threat agents in NIST databases. Multimed. Tools Appl. 82(11), 16951\u201316971 (2023). https:\/\/doi.org\/10.1007\/s11042-022-14036-y","journal-title":"Multimed. Tools Appl."},{"issue":"2","key":"6_CR14","doi-asserted-by":"publisher","first-page":"681","DOI":"10.1007\/s10796-022-10246-9","volume":"25","author":"TC Herath","year":"2023","unstructured":"Herath, T.C., Herath, H.S.B., Cullum, D.: An information security performance measurement tool for senior managers: balanced scorecard integration for security governance and control frameworks. Inf. Syst. Front. 25(2), 681\u2013721 (2023). https:\/\/doi.org\/10.1007\/s10796-022-10246-9","journal-title":"Inf. Syst. Front."},{"key":"6_CR15","doi-asserted-by":"publisher","unstructured":"Putra, I.M.M., Mutijarsa, K.: Designing information security risk management on Bali regional police command center based on ISO 27005. In: 3rd 2021 East Indonesia Conference on Computer and Information Technology, EIConCIT 2021, Institute of Electrical and Electronics Engineers Inc., pp. 14\u201319 (2021). https:\/\/doi.org\/10.1109\/EIConCIT50028.2021.9431865","DOI":"10.1109\/EIConCIT50028.2021.9431865"},{"key":"6_CR16","doi-asserted-by":"crossref","unstructured":"Putra, F.A., Setianwan, H.: Design of information security risk management using ISO\/IEC and NIST SP 800\u201330 Revision 1: A Case Study at Communication Data Applications of XYZ Institute (2017)","DOI":"10.1109\/ICITSI.2017.8267952"},{"key":"6_CR17","unstructured":"Fahrurozi, M., Tarigan Agrina, S., Tanjung, M.A., Mutijarsa, K.: ICITEE 2020\u202f: Proceedings of the 12th International Conference on Information Technology and Electrical Engineering\u202f: October 6th-8th 2020 (2020)"},{"key":"6_CR18","unstructured":"Rico Mart\u00ednez, M.A.: Universidad Cat\u00f3lica de Colombia, Institute of Electrical and Electronics Engineers. Region 9, Institute of Electrical and Electronics Engineers. Colombia Section. Technology and Engineering Management Chapter, and Institute of Electrical and Electronics Engineers, 2019 Congreso Internacional de Innovaci\u00f3n y Tendencias en Ingenier\u00eda (CONIITI)\u202f: conference proceedings\u202f: 2nd October - 4th October 2019, Bogot\u00e1, Colombia (2019)"},{"key":"6_CR19","unstructured":"Putra, S.J., Muslimin, J.: Information Security Risk Management Analysis Using ISO 27005: 2011 For The Telecommunication Company (2011)"},{"key":"6_CR20","unstructured":"Hugo del Pozo Barrezuela. Esquema Gubernamental de Seguridad de la Informaci\u00f3n (EGSI)"},{"key":"6_CR21","unstructured":"\u00d1auta Benavidez, R.G.: Plan de seguridad inform\u00e1tica para mejorar la gesti\u00f3n de la informaci\u00f3n en la sociedad financiera visionfound fodemi de la ciudad de Ibarra (2015)"},{"key":"6_CR22","unstructured":"Francisco, I., Zapata, X.F.: Implementaci\u00f3n Del Modelo De Gesti\u00f3n De La Seguridad De La Informaci\u00f3n Aplicando ISO 27000 En La Empresa COKA TOURS, AMBATO-ECUADOR (2014)"},{"key":"6_CR23","doi-asserted-by":"publisher","unstructured":"Zu\u00f1iga Paredes, A.R., Serrano Quevedo, I.M., Molina Chalac\u00e1n, L.J.: Seguridad inform\u00e1tica en las PyMES de la ciudad de Quevedo. J. Bus. Entrepreneurial Stud. 4(2), 232\u2013241 (2020). https:\/\/doi.org\/10.37956\/jbes.v4i2.97","DOI":"10.37956\/jbes.v4i2.97"}],"container-title":["Lecture Notes in Computer Science","Computational Science and Its Applications \u2013 ICCSA 2024 Workshops"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-65285-1_6","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2024,7,25]],"date-time":"2024-07-25T05:31:20Z","timestamp":1721885480000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-65285-1_6"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024]]},"ISBN":["9783031652844","9783031652851"],"references-count":23,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-65285-1_6","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2024]]},"assertion":[{"value":"26 July 2024","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"ICCSA","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Conference on Computational Science and Its Applications","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Hanoi","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Vietnam","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"1 July 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"4 July 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"24","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"iccsa2024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}