CPC G06F 21/552 (2013.01) [G06F 16/24522 (2019.01)] | 17 Claims |
1. A method for providing cybersecurity incident response, comprising:
providing a received incident input into a large language model (LLM);
mapping the received incident input into a scenario of a plurality of scenarios, each scenario including a plurality of sub-scenarios, based on an output of the LLM;
receiving a user input through a user interface, the user interface configured to render a graphical representation of a group of sub-scenarios of the plurality of sub-scenarios;
selecting a sub-scenario based on the received user input;
generating a query based on the received incident input and a selection of a sub-scenario of the plurality of sub-scenarios;
executing the query on a security database, the security database including a representation of a computing environment; and
initiating a mitigation action based on a result of the executed query.
|