Network policy management and effectiveness system
First Claim
1. An apparatus for managing a network compliance policy in a computer network, the apparatus comprising a computer system including at least one processor and at least one memory, wherein the computer system is configured and arranged to:
- store a set of network compliance policy parameters in a database, the database being communicably coupled to the computer network;
monitor a plurality of electronic transactions from at least one user accessing the computer network;
compare each of the plurality of electronic transactions with the set of network compliance policy parameters;
prepare a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters;
file the network policy compliance violation report;
conduct an appeals process in response to a request from the at least one user;
establish an appeal report, the appeal report being based on the appeals process; and
take action on the at least one user based on the network policy compliance violation report and the appeal report.
9 Assignments
0 Petitions
Accused Products
Abstract
The present disclosure relates to a method and apparatus for maintaining policy compliance on a computer network. A system in accordance with some embodiments disclosed herein performs the steps of electronically monitoring network user compliance with a network security policy stored in a database, electronically evaluating network security policy compliance based on network user compliance and electronically undertaking a network policy compliance action in response to network security policy non-compliance. The network policy compliance actions may include automatically implementing a different network security policy selected from network security policies stored in the database, generating policy effectiveness reports and providing a retraining module to network users.
52 Citations
20 Claims
-
1. An apparatus for managing a network compliance policy in a computer network, the apparatus comprising a computer system including at least one processor and at least one memory, wherein the computer system is configured and arranged to:
-
store a set of network compliance policy parameters in a database, the database being communicably coupled to the computer network; monitor a plurality of electronic transactions from at least one user accessing the computer network; compare each of the plurality of electronic transactions with the set of network compliance policy parameters; prepare a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters; file the network policy compliance violation report; conduct an appeals process in response to a request from the at least one user; establish an appeal report, the appeal report being based on the appeals process; and take action on the at least one user based on the network policy compliance violation report and the appeal report. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An article of manufacture for managing a network compliance policy in a computer network, the article of manufacture comprising a computer-readable storage device having a computer program stored therein that causes at least one network device in the computer network to perform operations comprising:
-
storing a set of network compliance policy parameters in a database, the database being coupled to the computer network; monitoring multiple electronic transactions from at least one user accessing the computer network; comparing each of the multiple electronic transactions with the set of network compliance policy parameters; preparing a network compliance policy violation report in response to one of the multiple electronic transactions matching one of the network compliance policy parameters; filing the network policy compliance violation report; conducting an appeals process in response to a request from the at least one user; establishing an appeal report, the appeal report being based on the appeals process; and taking an action on the at least one user based on the network policy compliance violation report and the appeal report.
-
-
19. An apparatus for managing a network compliance policy in a computer network, comprising:
-
means for storing a set of network compliance policy parameters on a database, the database being coupled to the computer network; means for monitoring a plurality of electronic transactions from at least one user accessing the computer network; means for comparing each of the plurality of electronic transactions with the set of network compliance policy parameters; means for preparing a network compliance policy violation report in response to one of the plurality of electronic transactions matching one of the network compliance policy parameters; means for filing the network policy compliance violation report; means for conducting an appeals process in response to a request from the at least one user; means for establishing an appeal report, the appeal report being based on the appeals process; and means for taking action on the at least one user based on the network policy compliance violation report and the appeal report.
-
-
20. A method, performed by a computing device having a processor and one or more memories, for managing a network compliance policy in a computer network, the method comprising:
-
storing a set of network compliance policy parameters in a database, the database being coupled to the computer network; monitoring multiple electronic transactions from at least one user accessing the computer network; comparing each of the multiple electronic transactions with the set of network compliance policy parameters; preparing a network compliance policy violation report in response to one of the multiple electronic transactions matching one of the network compliance policy parameters; filing the network policy compliance violation report; conducting an appeals process in response to a request from the at least one user; establishing an appeal report, the appeal report being based on the appeals process; and taking an action on the at least one user based on the network policy compliance violation report and the appeal report.
-
Specification