Connected security system

Assignee

• ACCENTURE GLOBAL SOLUTIONS LIMITED · IE

Inventors

• Shaan Mulchandani · Arlington, US
• Amin Hassanzadeh · Arlington, US
• Elvis Hovor · Clarksburg, US
• Shimon Modi · Washington, US
• Walid Negm · Reston, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L63/0227
• WIPO fieldDigital communication
• WIPO sectorElectrical engineering

Abstract

Systems, methods, and apparatus, including computer programs encoded on computer storage media, for obtaining, processing, and presenting data related to security events, and for implementing courses of action to protect assets in response to the security events. An event management module identifies malicious activity present on a first network domain and/or a second network domain based on received network domain activity. A threat intelligence module receives data identifying the malicious activity in first data constructs of a predefined data structure. The threat intelligence module obtains additional data related to the identified malicious activity and generates second data constructs that include enriched data regarding the malicious activity. The enriched data includes data describing a campaign in which at least a portion of the malicious activity is involved and one or more courses of action. A course of action module receives the second data constructs and implements a given course of action.