Análisis de riesgos y Vulnerabilidades en el proceso de Negocio “Emisión de Tarjetas de Crédito y Débito” de la Cooperativa Policía Nacional con sede en la ciudad de Quito - Ecuador

Abstract

This document presents a risk and vulnerability analysis of the credit and debit card issuance process at the National Police Cooperative in Quito, Ecuador. The study aimed to identify the risks and vulnerabilities present in the process and propose strategies to mitigate them. The problem lies in the potential risks and vulnerabilities that can occur during the credit and debit card issuance process, which can negatively impact the organization's security and business continuity. The objective of the study was to identify and analyze these risks and vulnerabilities to propose strategies to mitigate them. The methodology used was the OCTAVE Allegro method, which includes identifying assets, threats, vulnerabilities, and impacts, and calculating risk levels. The results of the analysis revealed several risks and vulnerabilities, such as inadequate access controls, lack of awareness and training of employees, and insufficient monitoring and surveillance of the process. To address these risks and vulnerabilities, the report proposes a series of recommendations, such as strengthening access controls, providing regular training to employees, establishing a risk management plan, and implementing monitoring and surveillance mechanisms. In conclusion, the study highlights the importance of implementing risk and vulnerability analysis in business processes to ensure the security and continuity of operations. The proposed strategies can serve as a useful reference for other financial institutions facing similar challenges. It is crucial to continuously improve and update security measures to keep up with the evolving threats and vulnerabilities.