Business plans become an important preliminary step for all Start Up. Properly defining the market segment and penetration, growth and operation strategies are activities that become essential. The objective of this work is to identify the necessary strategies that allowed a product called UDA-ERP to go from research to a business model. For this, a market study was applied by means of surveys to a group of micro and small companies in Cuenca, the third most important city in Ecuador. With the application of various strategic analysis tools, macro-strategies were determined that made it possible to establish a sustainable business model for a product resulting from an academic research project.
An ERP enterprise resource planning system is software that allows managing the tasks involving an organisation’s processes. Usability within this system plays a vital role in users’ performance, facilitating interaction in an enterprise resource planning (ERP) system and boosting performance in terms of efficiency and effectiveness, which is why it is essential to perform usability tests. The UDA-ERP software developed by the Universidad del Azuay is a business management system whose objective is to improve the production processes of manufacturing companies in the MIPYME sector in Cuenca, Ecuador. This motivated us to evaluate the degree of user perception of the system’s usability. The present work evaluates the usability of the UDA-ERP software by applying a controlled experiment based on the Wholin methodology. This experiment was used for five experimental groups, including experienced users and users without experience in these systems. Controlled experimentation evaluated the performance of the selected study subjects regarding task completion time and completed tasks. This way, a comparison of the results was obtained, contrasting the results between the different experimental groups. The results show that each group completes the tasks with short time differences; In terms of usability, the UDA-ERP software is correct and does not require modification. In conclusion, usability is a relevant feature to consider in an enterprise resource planning system; hence, it is recommended to apply usability evaluations with some frequency.
Las bases de datos son usualmente los principales objetivos de un ataque, específicamente por la información que en ella reside, ya que, de acuerdo con Druker, la información es poder. En este trabajo se realizan las pruebas de vulnerabilidad de la base de datos de un software ERP desarrollado en APEX 5. Para ello, se utilizan herramientas FOSS de prueba y análisis de vulnerabilidades de bases de datos, identificando que las sesiones que utiliza ERP basada en Oracle APEX son realizadas de manera aleatoria y que, además, son nuevamente generadas en determinados momentos. Se concluye que, con las pruebas aplicadas y las actualizaciones de SQLMAP a la fecha del experimento, no se ha conseguido vulnerar el software ERP con técnicas de inyección SQL.
Lograr el objetivo de proponer una metodología de seguridad de la información para la gestión del riesgoinformático, aplicable al entorno empresarial y organizacional, del sector MPYME ecuatoriano, requiere del análisis de las metodologías Magerit y CRAMM (CCTA Risk Analysis and Management Method), las mismas que son internacionalmente utilizadas en la gestión del riesgo de información; contemplando los marcos de referencia que contienen las mejores prácticas de la industria: ISO 27001, 27002, 27005 y 31000.Palabras clave: riesgos, gestión, Magerit, CRAMM, tecnologías de información, TI, seguridad, información, SGSI.AbstractThis paper aims to study the CRAMM (CCTA Risk Analysis and Manage ment Method) and Magerit methodologies used in information risk management. It contemplates international reference frames that contain the best practices in the industry: ISO 27001, 27002, 27005 and 31000.This research is part of a project proposal of “Methodology for information security risk management, applicable to MSMEs” applicable to the Ecuadorian environment. Keywords: Risk, Management, Magerit, CRAMM, Information Technology, IT, Information Security, ISMS.
scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.
customersupport@researchsolutions.com
10624 S. Eastern Ave., Ste. A-614
Henderson, NV 89052, USA
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Copyright © 2024 scite LLC. All rights reserved.
Made with 💙 for researchers
Part of the Research Solutions Family.