| CPC H04L 63/1433 (2013.01) | 20 Claims |
|
1. A method comprising steps of:
performing agentless scanning a cloud environment for posture control data, the posture control data comprising misconfigurations, vulnerabilities, and identity activities from a plurality of cloud providers;
identifying a plurality of security risk events based on the scanning, wherein the identifying includes correlating seemingly low-risk isolated security events that collectively pose higher risk when combined, using a machine-learning threat correlation model;
calculating a risk score for each of the plurality of security risk events; and
determining and recommending one or more remediations based on the risk score of each of the plurality of security risk events, wherein the one or more remediations are automatically prioritized according to a Return on Investment (ROI) score calculated based on both the risk mitigated by each remediation and a remediation effort score, thereby optimizing risk reduction efficiency and reducing operational alert fatigue.
|