Patent · US Active

Calculating and benchmarking an entity's cybersecurity risk score

US10498756B2 · kind B2 · utility

13Cited by

6References

14Claims

0Family size

Assignee

SecurityScorecard, Inc. · US

Inventors

Aleksandr Yampolskiy · Brooklyn, US
Rob Blackin · East Brunswick Township, US
Alexander Heid · Hollywood, US
Samuel Kassoumeh · New York, US

Key dates

Filing date	Oct 24, 2016
Grant date	Dec 3, 2019
Priority date	—
Expiry date	Oct 24, 2036

Classification

Technology area (CPC G)Physics
CPC primaryG06F2221/034
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Determining an entity's cybersecurity risk and benchmarking that risk includes non-intrusively collecting one or more types of data associated with an entity. Embodiments further include calculating a security score for at least one of the one or more types of data based, at least in part, on processing of security information extracted from the at least one type of data, wherein the security information is indicative of a level of cybersecurity. Some embodiments also comprise assigning a weight to the calculated security score based on a correlation between the extracted security information and an overall cybersecurity risk determined from analysis of one or more previously-breached entities in the same industry as the entity. Additional embodiments include calculating an overall cybersecurity risk score for the entity based, at least in part, on the calculated security score and the weight assigned to the calculated security score.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.