Abstract
The violation of principles such as confidentiality, integrity and availability of information, basic attributes of Information Security (IS), can affect business continuity and productivity and development organizations. Thus, the information security should be a subject of great relevance for organizations of Aeronautics Command (COMAER). In this sense, this study aimed to assess the compliance level of Information Security of the Second Center for Integrated Air Defense and Air Traffic Control (CINDACTA II) in relation to COMAER and Federal Public Administration publications, as well as the degree of CINDACTA II adherence for NBR 27002:2013 recommendations. The research was characterized as applied and descriptive about the objective. It was adopted the hypothetical-deductive method by means the documentary research and survey techniques. As to the problem approach was qualitative and quantitative. The study was carried out with five managers responsible for information security and 57 IT users in the CINDACTA II. We concluded that the CINDACTA II Information Security management is at a level that meets the requirements of NBR 27002:2013, as well as the publications of COMAER and Federal Public Administration. We observed similarities in IS practices between military and civil organizations, allowing us to infer that cultural issues, values and beliefs of the organizational environment influence information security.
Publisher
Revista de Sistemas e Computacao - RSC