CPC G06F 21/552 (2013.01) [G06F 16/24522 (2019.01)] | 21 Claims |
1. A method for providing cybersecurity incident response, comprising:
receiving an incident input based on a cybersecurity event;
generating a prompt for a large language model (LLM) based on the received incident input;
configuring the LLM to generate an output based on the generated prompt;
mapping the received incident input into a scenario of a plurality of scenarios based on the output of the LLM, wherein each scenario is associated with an incidence response;
generating a query based on the received incident input and the mapped scenario;
executing the query on a security database, the security database including a representation of a computing environment; and
initiating a mitigation action based on a result of the executed query.
|