| CPC G06Q 10/0635 (2013.01) [G06F 3/0482 (2013.01); G06F 21/577 (2013.01); G06F 30/20 (2020.01); G06Q 10/06375 (2013.01); G06F 2111/10 (2020.01); G06F 2221/033 (2013.01); G06F 2221/034 (2013.01); H04L 41/22 (2013.01)] | 17 Claims |
|
1. A method, comprising:
retrieving data corresponding to an asset, wherein the asset is a computing device or software application of an enterprise system;
identifying a set of vulnerabilities of the asset;
for each vulnerability in the set of vulnerabilities, determining whether a respective measure of effectiveness of a respective security control has breached a respective threshold measure of effectiveness of the respective security control;
for each vulnerability in a subset of the set of vulnerabilities, responsive to determining that the respective measure of effectiveness of the respective security control has breached the respective threshold measure of effectiveness of the respective security control, generating a targeted recommendation to implement a new security control on the asset for mitigating the vulnerability;
generating a user interface for the asset comprising a list including each targeted recommendation;
providing the user interface for display;
receiving user selection of a particular targeted recommendation in the list, the particular targeted recommendation mitigating a particular vulnerability of the subset of vulnerabilities; and
applying the security control identified by the particular targeted recommendation to the asset to mitigate the particular vulnerability.
|