Análisis para la integración de un sistema de información (SGSI) ISO-27001 utilizando OSSIM para empresa industrial

Abstract

This work is based on the identification of threats and vulnerabilities to the most critical assets of an industrial enterprise; after knowing that vulnerabilities, can materialize adequate controls based on ISO 27001 standard, so that the company can minimize the risks.

OSSIM is an Open Source platform that integrates 22 security tools to detect patterns and vulnerabilities. This platform monitors and analyzes traffic anomalies, benefiting the company while increasing network security.