DYNAMIC EMPLOYEE SECURITY RISK SCORING
First Claim
1. A method for quantifying employee security risk, the method comprising:
- receiving, at a computing device, a plurality of security risk facts associated with an employee;
determining, via a computing device processor, an employee security risk score based on the plurality of security risk facts; and
storing, at computing device memory, the employee security risk score.
1 Assignment
0 Petitions
Accused Products
Abstract
Embodiments of the invention relate to systems, methods, and computer program products that provide for an employee security risk score. The security risk score is presented as an extensible composite vector that supports an arbitrary number of risk categories. The risk categories can be aggregated at any level in the business hierarchy or according to any employee parameter. The simplistic, highly normalized approach to employee security risk scoring reduces redundancies and dependencies and provides for real-time updates, As such, the employee security risk scoring system provides for easily identifiable recognition of employees who pose security threats and for a means to track and monitor security risks posed by the employee based on their security risk score.
178 Citations
52 Claims
-
1. A method for quantifying employee security risk, the method comprising:
-
receiving, at a computing device, a plurality of security risk facts associated with an employee; determining, via a computing device processor, an employee security risk score based on the plurality of security risk facts; and storing, at computing device memory, the employee security risk score. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14)
-
-
15. A method for quantifying employee security risk, the method comprising:
-
receiving, at a computing device, a plurality of security risk facts, wherein each security risk fact is associated with one of a plurality of security risk categories; determining, via a computing device, a security risk category score for each of the plurality of security risk categories based on one or more security risk facts associated with the security risk category; determining, via a computing device processor, for each of the plurality of security risk categories and for a predetermined employee parameter, a security risk category average and a security risk category standard; determining, via a computing device processor, an employee parameter-specific sigma score for each of the plurality of security risk categories based on the security risk category score, the security risk category average and the security risk category standard deviation; determining, via a computing device processor, an employee security risk score associated with the employee parameter based on the employee-parameter specific sigma score for each of the plurality of security risk categories; and storing, in computing device memory, the employee security risk store. - View Dependent Claims (16, 17, 18, 19, 20)
-
-
21. An apparatus for quantifying employee security risk, the apparatus comprising:
-
a computing platform including at least one processor and a memory; an employee security risk scoring module that is stored in the memory, executable by the processor, configured to receive a plurality of security risk facts associated with an employee and including, an employee security risk scoring logic configured to determine an employee security risk score based on the plurality of security risk facts. - View Dependent Claims (22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34)
-
-
35. An apparatus for quantifying employee security risk, the apparatus comprising:
-
a computing platform including at least one processor and a memory; an employee security risk scoring module that is stored in the memory, executable by the processor, configured to receive a plurality of security risk facts associated with an employee and one of a plurality of security risk categories and including, an employee security risk scoring logic configured to determine an employee security risk score based on the plurality of security risk facts and including, a security risk category routine configured to determine a security risk category score for each of the plurality of security risk categories based on one or more security risk facts associated with the security risk category, a security risk category average routine configured to determine a security risk category average for each of the plurality of security risk categories and for employees defined by a predetermined employee parameter, a security risk category standard deviation routine configured to determine a security risk category standard deviation for each of the plurality of security risk categories and for employees defined by a predetermined employee parameter, a sigma scoring routine configured to determine an employee parameter-specific sigma score for each of the plurality of security risk categories based on the security risk category score, the security risk category average and the security risk category standard deviation, and employee security risk scoring routine configured to determine the employee risk score associated with the employee parameter based on the employee-parameter specific sigma score for each of the plurality of security risk categories. - View Dependent Claims (36, 37, 38, 39, 40, 41)
-
-
42. A computer program product comprising:
a computer-readable medium comprising; a first set of codes for causing a computer to receiving a plurality of security risk facts associated with an employee; a second set of codes for causing a computer to determine an employee security risk score based on the plurality of security risk facts; and a third set of codes for causing a computer to store the employee security risk score. - View Dependent Claims (43, 44, 45, 46, 47, 48, 49, 50, 51, 52)
Specification