An Approach to Artificial Intelligence Tools and the Legal Basis for Cybersecurity Governance
摘要
Cybersecurity governance problems persist in public and private organizations worldwide, in the Caribbean, and as a case study, Ecuador. The main causes include the absence of a law regulating the use of artificial intelligence in Ecuador, the lack of adequate AI tools, and the fact that information technology management operates at the governance level, in line with COBIT 2019 recommendations, which define ICTs as key components in organizational governance, among other factors. The objective is to generate an artificial intelligence model and a legal basis for cybersecurity governance. The deductive method and exploratory research were used to analyze information from scientific articles, official websites, the constitution, laws, and regulations. The resulting indicators were developed to identify the status of cybersecurity governance, indicators to measure the impact on cybersecurity governance, and an artificial intelligence model and the legal basis for cybersecurity governance. It was concluded that an appropriate artificial intelligence model and legal basis allow for mitigating risks, vulnerabilities and threats so that cybersecurity governance management is confidential, with integrity and availability.