Abstract
Information security and cybersecurity are key subjects in modern enterprises' management, being ISO-27001:2013, NIST Cybersecurity Framework and ISO-27009 some of the most implemented international frameworks and standards. Their main goal is to globally reduce the risk, by leveraging enterprises' competitiveness in global markets and enhancing business processes and collaborators' cyber awareness. Auditing processes examine and assess a list of predefined controls. For each control, a set of corrective measures could be proposed, to increase its compliance with the standard being used. These processes are time-consuming, involve on-site intervention by specialized consulting teams on the intervened enterprises, and a set of status reports of all the interventions should be elaborated and delivered. The existing auditing information systems are not developed to meet Small and Medium-sized Enterprises (SME) requirements, as they are mostly proprietary and expensive, ground usually on off-the-shelf applications, and are not generic to be used by several standards with different checklists and auditing methodologies. In this paper, a generic and web-integrated cybersecurity auditing information system is described. Its architecture, design, and data model enable it to be used in a wide set of auditing processes, by loading a predefined controls checklist assessment and their corresponding mitigation tasks list. It was designed to meet both SMEs and large enterprises' requirements, and stores auditing and intervention-related data in a relational database. The information system was tested on an ISO-27001:2013 information security auditing project, which has integrated fifty SMEs. The results obtained during the project are promising and reveal the appropriateness of using this information system in further similar auditing processes.

Abstract

Abstract
This paper presents an optimal framework for the resilience-oriented design (ROD) in distribution networks to protect these grids against extreme weather events such as earthquakes and floods. This strategy minimizes the summation of daily investment and repair costs of back up distributed generation (DG), hardening and tie lines, operation cost of network and DGs, and load shedding cost. Also, it considers AC power flow equations, system operation limits and planning and reconfiguration constraints. This problem is generally a mixed integer nonlinear programming (MINLP) problem, but it is converted to a mixed integer linear programming (MILP) problem to achieve a globally optimal solution with a low computation time. Moreover, the Benders decomposition (BD) approach is used for the proposed problem to obtain higher computation speed in large scale networks. In addition, this problem includes uncertain parameters such as load, energy price, and availability of network equipment in the case of extreme weather conditions. Hence, a scenario-based stochastic programming (SBSP) approach is used to model these uncertain parameters in the proposed ROD method, based on a hybrid approach, including roulette wheel mechanism (RWM) and the simultaneous backward method. The proposed problem is simulated on 33-bus and large-scale 119-bus distribution networks to prove its capabilities in different case studies.

Abstract
The need for the operational reserve is growing due to the increase of variability and intermittency in both generation and demand sides. Hence, energy storage systems (ESSs) are considered as an alternative source of the reserve, while conventional generators are not efficient based on economic and environmental perspectives. This paper studies an enhanced model for ESSs? participation as a fast reserve provider. The day-ahead scheduling of ESSs within scenarios disturbs their stored energy in the sequence of hours. This issue can dramatically increase or decrease the stored energy of ESSs and threatens the safety of operational planning. The proposed model of this paper introduces coordination strategies for the deployment of fast reserves of ESSs. The stochastic model of this paper considers the fluctuations of wind speed and also the load forecasting errors as the source of uncertainties. A decomposition-based method is employed to reduce the complexity of the model dealing with a large number of variables. A modified version of the IEEE RTS-24 test system is used to evaluate different strategies for managing of ESSs? reservoir. The result shows that large deviations of the reservoir can make the operation of ESSs infeasible in uncoordinated strategies. Also, two proposed strategies for performance under normal and conservative criteria provide choices for system operators based on the desired level of security. Besides, the deployment of fast reserves of ESSs improves operation quality by the money-saving and increasing the quality of power delivery.

Abstract

Abstract
The increase of global competitiveness, the ability of organizations to effectively use information technologies, and to focus on innovation and creativity are recognized as being important. In this context, the hypothesis of resorting to known creativity techniques or adaptations to help innovation in the field of Software Engineering appears to be challenging. This paper proposes a methodology for introducing creativity and innovation techniques in the Requirements Engineering process in order to build more agile and efficient Information Systems. The method uses a variety of creative techniques that are thought to be appropriate to the different stages of the process and is inspired by existing creative problem-solving methods and techniques, in particular in the Creative Problem-Solving Process, Productive Thinking Model and the Creative Potentiation Method. The study of the method allowed its application, through the use of various creativity techniques, in a real context in a social institution - the Social Center for Support to the Community of São Domingos. The application of the methodology allowed the identification of new opportunities that allowed the organization to devise service delivery strategies that were more suited to the needs of people.