Automated risk assessments using a contextual data model that correlates physical and logical assets
First Claim
Patent Images
1. A method for performing risk assessment for an information system comprising:
- receiving, via at least one computer device executing computer program instructions, an initiating event, wherein said initiating event comprises an automatic trigger event resulting from an occurrence of a predefined state of an information system;
accessing, via at least one computer device executing computer program instructions, a contextual data model of the information system and a set of data instances representing at least one operating state of the information system, wherein the contextual data model defines relationships between physical and logical assets of the information system;
analyzing, via at least one computer device executing computer program instructions, the contextual data model and set of data instances in relation to a previously established user-selected scenario;
generating, via at least one computer device executing computer program instructions, an action plan for the information system and the previously established user-selected scenario;
determining, via at least one computer device executing computer program instructions, an automation status of the action plan; and
when the automation status is determined to be affirmative, automatically executing, via at least one computer device executing computer program instructions, at least one automation rule to implement the action plan, wherein the automation rule comprises at least one automated process, wherein the at least one automated process executes a series of commands within the information system.
1 Assignment
0 Petitions
Accused Products
Abstract
An automated method, system, device, and/or computer program for performing risk assessment for an information system. A risk assessment tool can receive a scenario for which to perform a risk assessment. A contextual data model and a set of data instances for the information system can be accessed. The contextual data model can define relationships between physical and logical assets of the information system. The contextual data model and set of data instances can be analyzed in relation to the scenario. An action plan can be generated that addresses the scenario.
-
Citations
17 Claims
-
1. A method for performing risk assessment for an information system comprising:
-
receiving, via at least one computer device executing computer program instructions, an initiating event, wherein said initiating event comprises an automatic trigger event resulting from an occurrence of a predefined state of an information system; accessing, via at least one computer device executing computer program instructions, a contextual data model of the information system and a set of data instances representing at least one operating state of the information system, wherein the contextual data model defines relationships between physical and logical assets of the information system; analyzing, via at least one computer device executing computer program instructions, the contextual data model and set of data instances in relation to a previously established user-selected scenario; generating, via at least one computer device executing computer program instructions, an action plan for the information system and the previously established user-selected scenario; determining, via at least one computer device executing computer program instructions, an automation status of the action plan; and when the automation status is determined to be affirmative, automatically executing, via at least one computer device executing computer program instructions, at least one automation rule to implement the action plan, wherein the automation rule comprises at least one automated process, wherein the at least one automated process executes a series of commands within the information system. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An automated system for performing risk assessment for an information system that correlates physical and logical assets comprising:
-
a contextual data model of an information system that is digitally encoded in a non-transitory computer usable storage medium, said contextual data model defining a plurality of assets and relationships between said plurality of assets, wherein the contextual data model comprises at least one data model representing the information system, wherein the at least one data model of the information system discriminates and relates physical and logical assets of the information system; a set of data instances digitally encoded in a non-transitory computer usable storage medium, said set of data instances representing at least one operating state of the information system; and an information systems risk assessment tool, comprising computer program instructions stored on a non-transitory storage medium and that are executable by at least one processor, configured to utilize the contextual data model and the set of data instances to automatically determine an action plan, wherein the action plan is determined for a user-defined scenario, wherein said user-defined scenario defines a set of conditions for automatically initiating a programmatic operation that results in the information systems risk assessment tool generating the action plan, wherein said information systems risk assessment tool is selectively configurable to produce said action plan for a static risk assessment at a defined point in time, wherein said risk assessment tool is selectively configurable to produce said action plan for an static risk assessment for a defined time window, and wherein said risk assessment tool is selectively configurable to produce said action plan for a dynamic risk assessment performed against the information system in at least one of real-time and near real time. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A computer program product comprising a non-transitory computer useable storage medium having computer usable program embodied therewith, wherein the computer usable program code when executed on a computer causes the computer to:
-
receive an initiating event, wherein said initiating event comprises an automatic trigger event resulting from an occurrence of a predefined state of an information system; access a contextual data model of the information system and a set of data instances representing at least one operating state of the information system, wherein the contextual data model defines relationships between physical and logical assets of the information system; analyze the contextual data model and set of data instances in relation to a previously established user-selected scenario; generate an action plan for the information system and the previously established user-selected scenario; determine an automation status of the action plan; and when the automation status is determined to be affirmative, automatically execute at least one automation rule to implement the action plan, wherein the automation rule comprises at least one automated process, wherein the at least one automated process executes a series of commands within the information system. - View Dependent Claims (14, 15, 16, 17)
-
Specification