Patent · US Active

Assessing an information security governance of an enterprise

US9760849B2 · kind B2 · utility

221Cited by

2References

16Claims

0Family size

Assignee

Tata Consultancy Services Limited · IN

Inventors

Tirumala Rao VINNAKOTA · Hyderabad, IN
Narayana Guru Prasada Lakshmi Mandaleeka · Hyderabad, IN

Key dates

Filing date	Jul 8, 2014
Grant date	Sep 12, 2017
Priority date	—
Expiry date	Nov 24, 2035

Classification

Technology area (CPC G)Physics
CPC primaryG06Q10/0635
WIPO fieldIT methods for management
WIPO sectorElectrical engineering

Abstract

Systems and methods for assessing an information security governance of an enterprise are disclosed. The method includes classifying the information security governance into a plurality of sub-information security governances. The method further comprises defining a plurality of governance focus areas and a plurality of governance control dimensions for a sub-information security governance. The method further comprises checking a compliance, by a processor, of the governance practices of users in the sub-information security governances, in the plurality of governance focus areas, and in the plurality of governance control dimensions. The method further comprises assigning weights to the plurality of governance focus areas, to the plurality of governance control dimensions, and to the sub-information security governances. The method further comprises determining a score for sub-information security governance based on the compliance and the weights.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.