VALIDEZ DE UNA RÚBRICA PARA LA AUDITORÍA DE REDES EN EL CONTEXTO DE UNA INSTITUCIÓN PÚBLICA DE GUAYAQUIL

Abstract

The objective of the study is to validate an instrument for network security auditing, applicable to firewalls; for this, a three-level Likert scale was developed, consisting of 5 clauses, 10 categories and 68 items, distributed according to ISO27002 in Organization of Information Security (7), Access Control (17), Physical and Environmental security (6), Operations Security (18), Communications Security (20). As for the validation of the instrument, the reliability was measured with the G Theory and the software Edug1.6- e; The design of the measure consists of 3 facets: Business unit, Items and Auditors. On the other hand, the results in the analysis of Theory G show coefficients ρ equal 0, which indicates that the instrument is reliable. In relation to future work, the instrument proposes an exploratory diagnosis as a starting point for a technical network audit, where the operational effectiveness of safety controls can be evaluated.