Lessons learned in information security in a Category 1 Mayor’s Office

Abstract

The job of performing information security assurance in a Category 1 mayor’s office is a complex entity that presents its own challenges, due to the large flow of information that remains derived from the high synergy between the processes that public practice demands in a city, in the scenario of modernization that is necessary to be in accordance with the use of new technological trends that generate added value in utility and guarantee for its users and customers. In this line of action, the lessons to be taken into account that originate when carrying out an information security diagnosis in the different dependencies are presented, in compliance with the ISO / IEC 27001 standard.