| CPC H04L 63/1433 (2013.01) [G06F 21/577 (2013.01); G06N 20/00 (2019.01); G06Q 10/0635 (2013.01); H04L 63/1425 (2013.01)] | 14 Claims |
|
1. A cybersecurity risk management method, comprising:
recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers;
receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates;
assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier;
obtaining respective security scores for the affiliates; and
displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan (1) partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and (2) specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.
|