Benefits of Implementing an ISMS According to the ISO 27001 Standard in the Ecuadorian Manufacturing Industry

The high amount of information and the low security level within critical processes of the manufacturing industry, put at risk the productivity of the organization. Currently, this topic has been reviewed in a general way within the manufacturing industry. Therefore, this study proposes the implementation of an information security management system (ISMS) according to the ISO 27001 standard, applying Deming's methodologies (PDCA) and risk management (Magerit). The PDCA cycle as a continuous development tool aims to align the critical processes of the operations area that are part of the primary activities within the value chain. PDCA guarantees the confidentiality, integrity, and availability of the information, for the right management in both logical and physical level with short-term benefits. This study aims to propose guidelines that facilitate the implementation of an ISMS under an international standard, considering that nowadays the sound management of the information represents an invaluable asset for any organization.