Vulnerabilidades en la Seguridad Cibernética de Empresas: Un Estudio de Casos

Tamara Howell; Javier Rojas-Segura; Jose Martinez-Villavicencio; Cesar Rodriguez Bravo

doi:10.18687/LACCEI2025.1.1.1773

Vulnerabilidades en la Seguridad Cibernética de Empresas: Un Estudio de Casos

Translated title of the contribution: Cybersecurity Vulnerabilities in Companies: A Case Study

Tamara Howell
, Javier Rojas-Segura
, Jose Martinez-Villavicencio
, Cesar Rodriguez Bravo

Research output: Contribution to journal › Conference article › peer-review

1 Scopus citations

Abstract

Cyber risk refers to the dangers associated with the use of information and communication technologies, stemming from criminal activities. These risks can be perpetrated by both individuals and organizations. Many companies lack the technical knowledge necessary to effectively protect themselves against such attacks, placing them in a vulnerable position. However, adopting a proactive and resilient approach enables them to manage these risks more effectively. The objective of this study is to assess the level of cybersecurity in companies and analyze the cyber risks to which they are exposed, using an instrument called ECM2 to measure cybersecurity practices and obtain precise data for a comprehensive evaluation. Through a case study methodology, companies from different sectors and sizes were analyzed and compared, revealing that both multinational technology firms and small market service enterprises are vulnerable and face high levels of cyber risk due to deficiencies in their policies for mobile device usage.

Translated title of the contribution	Cybersecurity Vulnerabilities in Companies: A Case Study
Original language	Spanish
Journal	Proceedings of the LACCEI international Multi-conference for Engineering, Education and Technology
Issue number	2025
DOIs	https://doi.org/10.18687/LACCEI2025.1.1.1773
State	Published - 2025
Event	23rd LACCEI International Multi-Conference for Engineering, Education and Technology, LACCEI 2025 - Virtual, Online Duration: 16 Jul 2025 → 18 Jul 2025

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 16 Peace, Justice and Strong Institutions

Access to Document

10.18687/LACCEI2025.1.1.1773

Cite this

@article{74db5b806f4f493ab01d635e3bc5edb0,

title = "Vulnerabilidades en la Seguridad Cibern{\'e}tica de Empresas: Un Estudio de Casos",

abstract = "Cyber risk refers to the dangers associated with the use of information and communication technologies, stemming from criminal activities. These risks can be perpetrated by both individuals and organizations. Many companies lack the technical knowledge necessary to effectively protect themselves against such attacks, placing them in a vulnerable position. However, adopting a proactive and resilient approach enables them to manage these risks more effectively. The objective of this study is to assess the level of cybersecurity in companies and analyze the cyber risks to which they are exposed, using an instrument called ECM2 to measure cybersecurity practices and obtain precise data for a comprehensive evaluation. Through a case study methodology, companies from different sectors and sizes were analyzed and compared, revealing that both multinational technology firms and small market service enterprises are vulnerable and face high levels of cyber risk due to deficiencies in their policies for mobile device usage.",

keywords = "Cybersecurity, cyber resilience, cyber risk, cyber vulnerability",

author = "Tamara Howell and Javier Rojas-Segura and Jose Martinez-Villavicencio and \{Rodriguez Bravo\}, Cesar",

note = "Publisher Copyright: {\textcopyright} 2025 Latin American and Caribbean Consortium of Engineering Institutions. All rights reserved.; 23rd LACCEI International Multi-Conference for Engineering, Education and Technology, LACCEI 2025 ; Conference date: 16-07-2025 Through 18-07-2025",

year = "2025",

doi = "10.18687/LACCEI2025.1.1.1773",

language = "Espa{\~n}ol",

journal = "Proceedings of the LACCEI international Multi-conference for Engineering, Education and Technology",

issn = "2414-6390",

number = "2025",

}

TY - JOUR

T1 - Vulnerabilidades en la Seguridad Cibernética de Empresas

T2 - 23rd LACCEI International Multi-Conference for Engineering, Education and Technology, LACCEI 2025

AU - Howell, Tamara

AU - Rojas-Segura, Javier

AU - Martinez-Villavicencio, Jose

AU - Rodriguez Bravo, Cesar

PY - 2025

Y1 - 2025

N2 - Cyber risk refers to the dangers associated with the use of information and communication technologies, stemming from criminal activities. These risks can be perpetrated by both individuals and organizations. Many companies lack the technical knowledge necessary to effectively protect themselves against such attacks, placing them in a vulnerable position. However, adopting a proactive and resilient approach enables them to manage these risks more effectively. The objective of this study is to assess the level of cybersecurity in companies and analyze the cyber risks to which they are exposed, using an instrument called ECM2 to measure cybersecurity practices and obtain precise data for a comprehensive evaluation. Through a case study methodology, companies from different sectors and sizes were analyzed and compared, revealing that both multinational technology firms and small market service enterprises are vulnerable and face high levels of cyber risk due to deficiencies in their policies for mobile device usage.

AB - Cyber risk refers to the dangers associated with the use of information and communication technologies, stemming from criminal activities. These risks can be perpetrated by both individuals and organizations. Many companies lack the technical knowledge necessary to effectively protect themselves against such attacks, placing them in a vulnerable position. However, adopting a proactive and resilient approach enables them to manage these risks more effectively. The objective of this study is to assess the level of cybersecurity in companies and analyze the cyber risks to which they are exposed, using an instrument called ECM2 to measure cybersecurity practices and obtain precise data for a comprehensive evaluation. Through a case study methodology, companies from different sectors and sizes were analyzed and compared, revealing that both multinational technology firms and small market service enterprises are vulnerable and face high levels of cyber risk due to deficiencies in their policies for mobile device usage.

KW - Cybersecurity

KW - cyber resilience

KW - cyber risk

KW - cyber vulnerability

UR - https://www.scopus.com/pages/publications/105019298322

U2 - 10.18687/LACCEI2025.1.1.1773

DO - 10.18687/LACCEI2025.1.1.1773

M3 - Artículo de la conferencia

AN - SCOPUS:105019298322

SN - 2414-6390

JO - Proceedings of the LACCEI international Multi-conference for Engineering, Education and Technology

JF - Proceedings of the LACCEI international Multi-conference for Engineering, Education and Technology

IS - 2025

Y2 - 16 July 2025 through 18 July 2025

ER -

Vulnerabilidades en la Seguridad Cibernética de Empresas: Un Estudio de Casos

Abstract

UN SDGs

Access to Document

Other files and links

Fingerprint

Cite this