| CPC H04L 63/1433 (2013.01) [G06F 18/214 (2023.01); G06F 18/2433 (2023.01); G06N 5/01 (2023.01); H04L 63/1425 (2013.01)] | 19 Claims |
|
1. A computer-implemented method comprising:
generating, by a processor, an input feature space by collecting data from a plurality of computer sources, the input feature space including data associated with a computing system;
computing, by the processor, a likelihood of one or more data-security breach incidents based on the input feature space using a first computer model;
recognizing, by the processor, one or more events based on the input feature space using a second computer model;
determining, by the processor, a severity of at least one of the one or more data-security breach incidents and the one or more events using a third computer model;
generating, by the processor, one or more risk factor scores based on the determined severity of the at least one of the one or more data-security breach incidents and the one or more events, each of the one or more risk factor scores indicating a computer security risk of a certain computer security aspect of the computing system;
training, by the processor, weights for each of the one or more risk factor scores using a regression model and applying those weights to the one or more risk factor scores;
performing, by the processor, an action based on the one or more risk factor scores;
calculating, by the processor, an aggregate risk factor score based on a weighted mean of the one or more risk factor scores and external data, the external data including industry data for an industry in which the computing system is involved; and
providing, by the processor, the aggregate risk factor score for display.
|