Patent · US Active

Automated risk assessment module with real-time compliance monitoring

US11425160B2 · kind B2 · utility

2Cited by

4References

19Claims

0Family size

Assignee

OneTrust, LLC · US

Inventors

Patrick Glenn Murray · Honolulu, US
Carman Kwong · Coquitlam, CA
Christopher Cross · Denver, US
Jose Costa Moreno · Calgary, CA
Harpreet Shergill · Calgary, CA
Keegan Callin · Calgary, CA

Key dates

Filing date	Jul 12, 2021
Grant date	Aug 23, 2022
Priority date	—
Expiry date	Jul 12, 2041

Classification

Technology area (CPC H)Electricity
CPC primaryH04L63/306
WIPO fieldDigital communication
WIPO sectorElectrical engineering

Abstract

Techniques are disclosed for usage-tracking of various information security (InfoSec) entities for tenants/organization onboarded on an instant multi-tenant security assurance platform. The InfoSec entities include policies, procedures, controls and evidence tasks. A policy or procedure is enforced by implementing one or more controls, and the collection of one or more evidence tasks proves/verifies the implementation of a control. The InfoSec entities are linked to each other across the platform and accrue a number of benefits for the tenants. These include generating a security questionnaire response (SQR), defining a readiness project and an audit project, sharing InfoSec entities encompassing the various products of a tenant, automating risk assessment, automatic collection of evidence tasks for verifying the implementation and/or operational state/status of various mitigating controls, etc.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.