Abstract

This study focuses on examining the implementation of information security management systems in the national archives of Latin America according to the recommendations of the ISO/IEC 27001 standard, with the aim of understanding current protection methods, identifying possible areas for improvement, and determining strategies that guarantee the defense of their information assets. Quantitative research was used, employing a stratified probability sampling technique based on a population of 16 archival entities associated with the Latin American Association of Archives. To collect the data, a survey was conducted among the directors of national archives, with a response rate of 68,75 %, equivalent to 11 responses. The results show that most of these archives have implemented basic security practices, such as backups, physical access controls, and institutional policies. However, weaknesses were identified in the
adoption of more sophisticated security controls, such as the use of encryption and biometrics, the standardization of secure disposal procedures, the ongoing training of archivists, and risk management. The simultaneous use of analog and electronic media, together with obsolete technologies, demonstrates the urgency of renewing the technological infrastructure and defining digital preservation plans. In summary, although awareness of the importance of securing information has grown, the implementation of ISMSs in archives is still limited. It is essential to strengthen this through the adoption of international standards, ongoing staff training, cooperation between countries in the region, and the modernization of technological infrastructure. These practices will contribute to safeguarding Latin America’s historical memory in a comprehensive manner and ensuring its digital continuity for future generations.