Abstract:

Business, government, and public institutions continuously experience challenges in the use of modern information technology, requiring integrated measures for the protection of information and ensuring three fundamental aspects: confidentiality, availability, and integrity. To carry out these actions, strategies must be established where action policies are adopted for each of these cases. Therefore, the following research work was carried out to determine the benefits and effectiveness of the implementation of good practices developed under the ISO/IEC 27001 standard. An in-depth research was conducted with articles published from 2015 to 2020, which were extracted from various academic sources. This study explores the dynamics that occur in the use and application of standards up to the present time, considering the present situation of COVID-19, where the securities in the institutions are being violated.