CYBERSECURITY RISK ASSESSMENT AND REMEDIATION TOOL

Organization Name

Capital One Services, LLC

Inventor(s)

Andrew Eshman of Fairfax VA (US)

Mohamed Seck of Aubrey TX (US)

Ibrahima Mbaye of Jersey City NJ (US)

CYBERSECURITY RISK ASSESSMENT AND REMEDIATION TOOL - A simplified explanation of the abstract

This abstract first appeared for US patent application 20240039946 titled 'CYBERSECURITY RISK ASSESSMENT AND REMEDIATION TOOL

Simplified Explanation

The disclosed embodiments pertain to cybersecurity assessment and remediation. A questionnaire comprising a set of questions can be generated and provided electronically to a device of a small business representative. In one instance, the questionnaire can be dynamically responsive to input to focus on questions relevant to a particular business. Responses to questions can be used to generate a score that captures cyberattack readiness and a recommendation to reduce cybersecurity risk. Further, tests can be executed on a technology stack of the business. Test results can then be employed as a basis to generate the score and recommendation.

• The patent application describes a method for conducting cybersecurity assessments and providing recommendations for small businesses.
• A questionnaire is generated and provided electronically to a small business representative to assess their cybersecurity readiness.
• The questionnaire is dynamically responsive to input, focusing on questions relevant to the specific business being assessed.
• Responses to the questionnaire are used to generate a score that captures the business's readiness for cyberattacks.
• Recommendations are provided to the business to reduce cybersecurity risk based on the generated score.
• Tests can be executed on the technology stack of the business to gather additional information for the assessment.
• Test results are used as a basis to generate the score and recommendation.

Potential applications of this technology:

• Small businesses can use this technology to assess their cybersecurity readiness and identify areas for improvement.
• Cybersecurity consultants can utilize this technology to provide assessments and recommendations to their clients.
• Government agencies can employ this technology to assess the cybersecurity posture of small businesses and provide guidance.

Problems solved by this technology:

• Small businesses often lack the resources and expertise to conduct comprehensive cybersecurity assessments. This technology provides a streamlined and automated approach to assess their cybersecurity readiness.
• The dynamic responsiveness of the questionnaire ensures that the assessment is tailored to the specific business, focusing on relevant areas of cybersecurity risk.

Benefits of this technology:

• Small businesses can improve their cybersecurity posture and reduce the risk of cyberattacks by following the recommendations provided.
• The automated assessment process saves time and resources for both the small business and the cybersecurity consultant.
• Government agencies can efficiently assess the cybersecurity readiness of small businesses and provide targeted support and guidance.

Original Abstract Submitted

disclosed embodiments pertain to cybersecurity assessment and remediation. a questionnaire comprising a set of questions can be generated and provided electronically to a device of a small business representative. in one instance, the questionnaire can be dynamically responsive to input to focus on questions relevant to a particular business. responses to questions can be used to generate a score that captures cyberattack readiness and a recommendation to reduce cybersecurity risk. further, tests can be executed on a technology stack of the business. test results can then be employed as a basis to generate the score and recommendation.