Segundo Moisés Toapanta ToapantaRodrigo Humberto Del Pozo DurangoLuis Enrique Mafla GallegosEriannys Zharayth Gómez DíazYngrid Josefina Melo QuintanaJoan Noheli Miranda JimenezMa. Roció Maciel ArellanoJosé António Orizaga Trejo2026-03-242026-03-24202210.25046/aj070614https://doi.org/10.25046/aj070614https://andeanlibrary.org/handle/123456789/100194Citaciones: 1The constant evolution of Information and Communication Technologies, Internet, access to different free software, among others; they generate problems in the management of information security in companies; to mitigate risks, vulnerabilities, and information threats, an alternative was presented considering that information security systems are the basis for decision-making at the government, strategic, tactical, and operational levels. The objective is to design a security prototype applied to business management to mitigate risks, vulnerabilities and threats to information. The deductive method and exploratory research were used for the analysis of the information. Turned out prototypes that allow mitigating risks, vulnerabilities and threats in information management for data control and integrity. It was concluded that the security prototype proposed for a commercial information system; it is security system suitable for public and private companies. In the simulation carried out, it was determined that if the number of risks and threats is high, there will be a greater probability that a problem will arise in the security of the system.enComputer securityData integrityRisk analysis (engineering)Computer scienceVulnerability (computing)BusinessInternet privacyarticle