Risk driven compliance management
First Claim
1. A system that ensures computer network environment compliance, comprising:
- a receiving component that obtains a level of risk for at least one computer network environment; and
a compliance management component that dynamically determines a level of detection and/or compliance for the computer network environment in response to the risk level.
2 Assignments
0 Petitions
Accused Products
Abstract
Environmental risk levels are leveraged to provide dynamic, user-tailorable, actions to detect network compliance and/or to remediate via manual and/or automatic means to bring the network into compliance given the risk level. The risk levels can be based on a combination of business, security, and operation factors and the like. Potentially different remediation steps can be performed on a network-wide basis and/or on individual items of the network based on a current level of environmental risk. Instances can include a management console that can provide a centralized point of administration that allows an organization to review a state of compliance with a security policy across a network environment and/or select a current level of risk which can drive a configuration management engine appropriately. The configuration management engine can utilize existing components to facilitate in detection and/or remediation of the computer network.
-
Citations
20 Claims
-
1. A system that ensures computer network environment compliance, comprising:
-
a receiving component that obtains a level of risk for at least one computer network environment; and
a compliance management component that dynamically determines a level of detection and/or compliance for the computer network environment in response to the risk level. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 20)
-
-
11. A method for ensuring computer network environment compliance, comprising:
-
obtaining a level of risk for at least one computer network environment; and
employing a compliance engine to detect and/or remediate the computer network environment compliance in response to the level of risk. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18)
-
-
19. A system that ensures computer network environment compliance, comprising:
-
means for obtaining a level of risk for at least one computer network environment;
means for dynamically determining a level of detection and compliance for the computer network environment in response to the risk level; and
means for scanning and/or remediation of the computer network environment to facilitate in dynamically responding to the risk level to maintain detection and/or compliance of the computer network environment.
-
Specification