METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS
Systems and methods described herein provide a cyber risk assessment service. A computing device determines weights for techniques of a cyber security framework based on historical industry impact. The computing device associates an enterprise network with an industry identifier, obtains customer ri...
Gespeichert in:
| Hauptverfasser: | , , , , |
|---|---|
| Format: | Patent |
| Sprache: | eng |
| Online-Zugang: | Volltext bestellen |
| Tags: |
Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
|
| container_end_page | |
|---|---|
| container_issue | |
| container_start_page | |
| container_title | |
| container_volume | |
| creator | Bogren, Lori K Kutchko, Katrina Marie Dallas, Charles A Ashford, Allison J Fridman, Yonatan |
| description | Systems and methods described herein provide a cyber risk assessment service. A computing device determines weights for techniques of a cyber security framework based on historical industry impact. The computing device associates an enterprise network with an industry identifier, obtains customer risk data for the enterprise network, and normalizes and/or combines the customer risk data to form normalized risk scores. The computing device maps the customer risk data to corresponding techniques in the cyber security framework, generates technique scores based on the mapping and the normalized risk scores, and generates weighted technique scores using some of the weights selected based on the industry identifier. The computing device calculates an overall security score for the enterprise network based on the weighted technique scores, identifies a corrective recommendation for the overall security score, and provides the overall security score and the corrective recommendation for presentation to a user. |
| format | Patent |
| fullrecord | <record><control><sourceid>epo_EVB</sourceid><recordid>TN_cdi_epo_espacenet_US2022232031A1</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><sourcerecordid>US2022232031A1</sourcerecordid><originalsourceid>FETCH-epo_espacenet_US2022232031A13</originalsourceid><addsrcrecordid>eNrjZDD1dQ3x8HdRcPRzUQiODA5x9VVw8w9ScA1z9Al1DPH0c1dwjnRyDVIIdnUODfIMiVQI8gz2DuZhYE1LzClO5YXS3AzKbq4hzh66qQX58anFBYnJqXmpJfGhwUYGRkZGxkYGxoaOhsbEqQIAlL4omw</addsrcrecordid><sourcetype>Open Access Repository</sourcetype><iscdi>true</iscdi><recordtype>patent</recordtype></control><display><type>patent</type><title>METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS</title><source>esp@cenet</source><creator>Bogren, Lori K ; Kutchko, Katrina Marie ; Dallas, Charles A ; Ashford, Allison J ; Fridman, Yonatan</creator><creatorcontrib>Bogren, Lori K ; Kutchko, Katrina Marie ; Dallas, Charles A ; Ashford, Allison J ; Fridman, Yonatan</creatorcontrib><description>Systems and methods described herein provide a cyber risk assessment service. A computing device determines weights for techniques of a cyber security framework based on historical industry impact. The computing device associates an enterprise network with an industry identifier, obtains customer risk data for the enterprise network, and normalizes and/or combines the customer risk data to form normalized risk scores. The computing device maps the customer risk data to corresponding techniques in the cyber security framework, generates technique scores based on the mapping and the normalized risk scores, and generates weighted technique scores using some of the weights selected based on the industry identifier. The computing device calculates an overall security score for the enterprise network based on the weighted technique scores, identifies a corrective recommendation for the overall security score, and provides the overall security score and the corrective recommendation for presentation to a user.</description><language>eng</language><creationdate>2022</creationdate><oa>free_for_read</oa><woscitedreferencessubscribed>false</woscitedreferencessubscribed></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20220721&DB=EPODOC&CC=US&NR=2022232031A1$$EHTML$$P50$$Gepo$$Hfree_for_read</linktohtml><link.rule.ids>230,308,780,885,25563,76318</link.rule.ids><linktorsrc>$$Uhttps://worldwide.espacenet.com/publicationDetails/biblio?FT=D&date=20220721&DB=EPODOC&CC=US&NR=2022232031A1$$EView_record_in_European_Patent_Office$$FView_record_in_$$GEuropean_Patent_Office$$Hfree_for_read</linktorsrc></links><search><creatorcontrib>Bogren, Lori K</creatorcontrib><creatorcontrib>Kutchko, Katrina Marie</creatorcontrib><creatorcontrib>Dallas, Charles A</creatorcontrib><creatorcontrib>Ashford, Allison J</creatorcontrib><creatorcontrib>Fridman, Yonatan</creatorcontrib><title>METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS</title><description>Systems and methods described herein provide a cyber risk assessment service. A computing device determines weights for techniques of a cyber security framework based on historical industry impact. The computing device associates an enterprise network with an industry identifier, obtains customer risk data for the enterprise network, and normalizes and/or combines the customer risk data to form normalized risk scores. The computing device maps the customer risk data to corresponding techniques in the cyber security framework, generates technique scores based on the mapping and the normalized risk scores, and generates weighted technique scores using some of the weights selected based on the industry identifier. The computing device calculates an overall security score for the enterprise network based on the weighted technique scores, identifies a corrective recommendation for the overall security score, and provides the overall security score and the corrective recommendation for presentation to a user.</description><fulltext>true</fulltext><rsrctype>patent</rsrctype><creationdate>2022</creationdate><recordtype>patent</recordtype><sourceid>EVB</sourceid><recordid>eNrjZDD1dQ3x8HdRcPRzUQiODA5x9VVw8w9ScA1z9Al1DPH0c1dwjnRyDVIIdnUODfIMiVQI8gz2DuZhYE1LzClO5YXS3AzKbq4hzh66qQX58anFBYnJqXmpJfGhwUYGRkZGxkYGxoaOhsbEqQIAlL4omw</recordid><startdate>20220721</startdate><enddate>20220721</enddate><creator>Bogren, Lori K</creator><creator>Kutchko, Katrina Marie</creator><creator>Dallas, Charles A</creator><creator>Ashford, Allison J</creator><creator>Fridman, Yonatan</creator><scope>EVB</scope></search><sort><creationdate>20220721</creationdate><title>METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS</title><author>Bogren, Lori K ; Kutchko, Katrina Marie ; Dallas, Charles A ; Ashford, Allison J ; Fridman, Yonatan</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-epo_espacenet_US2022232031A13</frbrgroupid><rsrctype>patents</rsrctype><prefilter>patents</prefilter><language>eng</language><creationdate>2022</creationdate><toplevel>online_resources</toplevel><creatorcontrib>Bogren, Lori K</creatorcontrib><creatorcontrib>Kutchko, Katrina Marie</creatorcontrib><creatorcontrib>Dallas, Charles A</creatorcontrib><creatorcontrib>Ashford, Allison J</creatorcontrib><creatorcontrib>Fridman, Yonatan</creatorcontrib><collection>esp@cenet</collection></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Bogren, Lori K</au><au>Kutchko, Katrina Marie</au><au>Dallas, Charles A</au><au>Ashford, Allison J</au><au>Fridman, Yonatan</au><format>patent</format><genre>patent</genre><ristype>GEN</ristype><title>METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS</title><date>2022-07-21</date><risdate>2022</risdate><abstract>Systems and methods described herein provide a cyber risk assessment service. A computing device determines weights for techniques of a cyber security framework based on historical industry impact. The computing device associates an enterprise network with an industry identifier, obtains customer risk data for the enterprise network, and normalizes and/or combines the customer risk data to form normalized risk scores. The computing device maps the customer risk data to corresponding techniques in the cyber security framework, generates technique scores based on the mapping and the normalized risk scores, and generates weighted technique scores using some of the weights selected based on the industry identifier. The computing device calculates an overall security score for the enterprise network based on the weighted technique scores, identifies a corrective recommendation for the overall security score, and provides the overall security score and the corrective recommendation for presentation to a user.</abstract><oa>free_for_read</oa></addata></record> |
| fulltext | fulltext_linktorsrc |
| identifier | |
| ispartof | |
| issn | |
| language | eng |
| recordid | cdi_epo_espacenet_US2022232031A1 |
| source | esp@cenet |
| title | METHOD AND SYSTEM FOR EVALUATING CYBER SECURITY RISKS |
| url | https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-10T14%3A00%3A45IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-epo_EVB&rft_val_fmt=info:ofi/fmt:kev:mtx:patent&rft.genre=patent&rft.au=Bogren,%20Lori%20K&rft.date=2022-07-21&rft_id=info:doi/&rft_dat=%3Cepo_EVB%3EUS2022232031A1%3C/epo_EVB%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_id=info:pmid/&rfr_iscdi=true |