Integrated enterprise-level compliance and risk management system

US 20070250932A1
Filed: 04/20/2006
Published: 10/25/2007
Est. Priority Date: 04/20/2006
Status: Abandoned Application

First Claim

Patent Images

1. A compliance management system comprising:

a plurality of distributed software interfaces to interface with a plurality of assets on a network;

an asset module to discover the plurality of assets using the plurality of distributed software interfaces and to allow a user to configure the plurality of assets;

a policy module to allow a user to apply one or more of a set of policies to one or more of the plurality of assets and to analyze compliance with the set of policies;

a policy editor to allow a user to add policies to the set of policies and to edit policies in the set of policies; and

a reporting module to report the compliance of the one or more assets with the one or more policies based on the analysis performed by the policy module.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In one embodiment, the present invention includes a plurality of distributed software interfaces to interface with a plurality of assets on a network. The present invention can also include an asset module to discover the plurality of assets using the plurality of distributed software interfaces and to allow a user to configure the plurality of assets, and a policy module to allow a user to apply one or more of a set of policies to one or more of the plurality of assets and to analyze compliance with the set of policies. A policy editor can allow a user to add policies to the set of policies and to edit policies in the set of policies. Furthermore, the present invention can include a reporting module to report the compliance of the one or more assets with the one or more policies based on the analysis performed by the policy module.

43 Citations

View as Search Results

17 Claims

1. A compliance management system comprising:
- a plurality of distributed software interfaces to interface with a plurality of assets on a network;
  
  an asset module to discover the plurality of assets using the plurality of distributed software interfaces and to allow a user to configure the plurality of assets;
  
  a policy module to allow a user to apply one or more of a set of policies to one or more of the plurality of assets and to analyze compliance with the set of policies;
  
  a policy editor to allow a user to add policies to the set of policies and to edit policies in the set of policies; and
  
  a reporting module to report the compliance of the one or more assets with the one or more policies based on the analysis performed by the policy module.
- View Dependent Claims (2, 3, 6)
- - 2. The compliance management system of claim 1, further comprising a risk management module to analyze risk using information collected by the distributed software interfaces and the analysis performed by the policy module.
  - 3. The compliance management system of claim 1, wherein the plurality of software interfaces comprises a plurality of distributed software agents, a plurality of connectors, and a plurality of connectors.
  - 6. The compliance management system of claim 1, wherein the asset module allows a user to assign a person to a role, the role including a pre-selected set of policies from the plurality of policies.

4. The compliance management system of 1, wherein the asset module allows the user to place a set of assets into an asset group.
- View Dependent Claims (5)
- - 5. The compliance management system of claim 4, wherein the policy module allows the user to apply a policy to the asset group.

7. A method comprising:
- collecting information from a plurality of software interfaces distributed over a network of an enterprise at a compliance management system;
  
  discovering assets using the collected information;
  
  configuring the discovered assets;
  
  applying one or more policies to the configured assets;
  
  analyzing a compliance of the assets with the one or more policies applied to the assets; and
  
  reporting the results of the analysis to a user of the compliance management system.
- View Dependent Claims (8, 9, 10, 11, 12)
- - 8. The method of claim 7, wherein configuring the discovered assets comprises allowing the user to configure at least some of the discovered assets via a user interface of the compliance management system.
  - 9. The method of claim 8, further comprising allowing the user to create the one of more policies via the user interface of the compliance management system.
  - 10. The method of claim 7, further comprising analyzing enterprise risk based on the result of the analysis of the compliance of the assets with the one or more policies.
  - 11. The method of claim 7, wherein applying one or more policies to the configured assets comprises automatically sending a survey to a business owner of an asset.
  - 12. The method of claim 11, wherein analyzing the compliance of the assets with the one or more policies comprises analyzing the compliance of the asset using answers supplied by the business owner of the asset.

13. A machine-readable medium having stored thereon data representing instructions that, when executed by a processor, cause the processor to perform operations comprising:
- collecting information from a plurality of software interfaces distributed over a network of an enterprise at a compliance management system;
  
  discovering assets using the collected information;
  
  configuring the discovered assets;
  
  applying one or more policies to the configured assets;
  
  analyzing a compliance of the assets with the one or more policies applied to the assets; and
  
  reporting the results of the analysis to a user of the compliance management system.
- View Dependent Claims (14, 15, 16, 17)
- - 14. The machine-readable medium of claim 13, wherein configuring the discovered assets comprises allowing the user to configure at least some of the discovered assets via a user interface of the compliance management system.
  - 15. The machine-readable medium of claim 14, wherein the instructions further cause the processor to provide an interface to the user to create the one of more policies.
  - 16. The machine-readable medium of claim 13, wherein the instructions further cause the processor to analyze enterprise risk based on the result of the analysis of the compliance of the assets with the one or more policies.
  - 17. The machine-readable medium of claim 13, wherein applying one or more policies to the configured assets comprises automatically sending a survey to a business owner of an asset. 18. The machine-readable medium of claim 17, wherein analyzing the compliance of the assets with the one or more policies comprises analyzing the compliance of the asset using answers supplied by the business owner of the asset.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Agilence Incorporated
Original Assignee
Agilence Incorporated
Inventors
Kothari, Pravin

Application Number

US11/407,838
Publication Number

US 20070250932A1
Time in Patent Office

Days
Field of Search
US Class Current

726/25
CPC Class Codes

G06Q 40/08 Insurance

Integrated enterprise-level compliance and risk management system

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

43 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Integrated enterprise-level compliance and risk management system

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

43 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links