Varela Vaca, Ángel JesúsMartínez Gasca, Rafael2022-11-222022-11-222015Varela Vaca, Á.J. y Martínez Gasca, R. (2015). Towards Automatic Integration of Information Security Governance and Management using a BPMS approach. En JNIC 2015: Primeras Jornadas Nacionales de Investigación en Ciberseguridad (122-128), León, España: Universidad de León.978-84-9773-742-5https://hdl.handle.net/11441/139666The information security management is more and more carried out by means of business processes although disregarding the quality of management enough. In order to improve that quality, we propose to carry out the automation of the information security governance. To achieve a high maturity level in the information security management, the integration of processes for good governance is needed, which enables to ensure the maturity level 4: Qualitatively Controlled, such as ISO/IEC 21827:2008 proposed. This level allows establishing measurable quality goals and objectively managing performance. This work enables to reach these levels by using business process management systems to implement a good information security governance, combined with the integration of business processes for the information security managementapplication/pdf7engAttribution-NonCommercial-NoDerivatives 4.0 Internacionalhttp://creativecommons.org/licenses/by-nc-nd/4.0/info:eu-repo/semantics/conferenceObjectinfo:eu-repo/semantics/openAccess