GOVERNANCE AND INFORMATION SECURITY POLICIES IN THE CORPORATE ENVIRONMENT: AN INTERDISCIPLINARY ANALYSIS OF COMPLIANCE AND THE HUMAN FACTOR

Authors

  • Paulo Roberto Silva Maciel Universidade Estácio de Sá

DOI:

https://doi.org/10.51891/rease.v12i5.26849

Abstract

This study investigates the effectiveness of Information Security Policies (ISP) in contemporary organizations, emphasizing the convergence between ISO/IEC 27001 technical requirements and the General Data Protection Law (LGPD). The central problem lies in the persistence of cyber vulnerabilities associated with human behavior, even in environments with high technological investment. Methodologically, a Systematic Literature Review was conducted under the PRISMA guidelines, analyzing 52 studies selected for their technical rigor. The results indicate that information security is an ongoing organizational process that depends on a structured documentary architecture (Directives, Standards, and Procedures) and the commitment of senior management. It is concluded that the consolidation of a security culture is the strategic differentiator for the protection of digital assets and the maintenance of organizational competitiveness.

Downloads

Download data is not yet available.

Author Biography

Paulo Roberto Silva Maciel, Universidade Estácio de Sá

Pós-graduação em Governança em Tecnologia da Informação pela Fasul Educacional. Graduado em Sistemas de Informação pela Universidade Estácio de Sá.

Downloads

Published

2026-05-18

How to Cite

Maciel, P. R. S. (2026). GOVERNANCE AND INFORMATION SECURITY POLICIES IN THE CORPORATE ENVIRONMENT: AN INTERDISCIPLINARY ANALYSIS OF COMPLIANCE AND THE HUMAN FACTOR. Revista Ibero-Americana De Humanidades, Ciências E Educação, 12(5), 1–13. https://doi.org/10.51891/rease.v12i5.26849

Issue

Vol. 12 No. 5 (2026): Revista Ibero-Americana de Humanidades, Ciências e Educação — REASE

Section

Artigos

Categories

License

Atribuição CC BY