SELF-ADJUSTING CYBERSECURITY ANALYSIS AND SCORE GENERATION

Organization Name

QOMPLX LLC

Inventor(s)

Jason Crabtree of Vienna VA (US)

Andrew Sellers of Monument CO (US)

SELF-ADJUSTING CYBERSECURITY ANALYSIS AND SCORE GENERATION - A simplified explanation of the abstract

This abstract first appeared for US patent application 20240305671 titled 'SELF-ADJUSTING CYBERSECURITY ANALYSIS AND SCORE GENERATION

The abstract describes a reconnaissance engine that gathers data about a client's computer network to generate a cybersecurity score by evaluating various aspects of cybersecurity independently, weighting them, and cross-referencing them.

• The reconnaissance engine gathers data from the client, devices and systems on the client's network, and the internet.
• Each aspect of cybersecurity is evaluated independently and weighted.
• The cybersecurity score is generated by aggregating individual vulnerability and risk factors.
• The scoring system can be used as a state machine with the cybersecurity score acting as a feedback mechanism.
• Data from clients with more extensive reporting can be used to supplement data for clients with less extensive reporting.

Potential Applications: - Cybersecurity risk assessment for organizations - Enhancing cybersecurity analysis and scoring for clients - Providing transparent and traceable methodology for cybersecurity evaluation

Problems Solved: - Lack of comprehensive cybersecurity risk assessment - Difficulty in evaluating multiple aspects of cybersecurity independently

Benefits: - Improved understanding of cybersecurity risk - Enhanced cybersecurity measures for organizations - Transparent and traceable methodology for cybersecurity evaluation

Commercial Applications: Title: Cybersecurity Risk Assessment Engine This technology can be used by cybersecurity firms to offer comprehensive risk assessment services to organizations, enhancing their cybersecurity measures and overall protection against cyber threats.

Questions about the Cybersecurity Risk Assessment Engine: 1. How does the reconnaissance engine gather data from the client's network? The reconnaissance engine gathers data from the client, devices and systems on the client's network, and the internet to assess various aspects of cybersecurity independently.

2. What is the significance of weighting and cross-referencing different aspects of cybersecurity in generating the cybersecurity score? Weighting and cross-referencing different aspects of cybersecurity help in providing a comprehensive characterization of cybersecurity risk for the client.

Original Abstract Submitted

a reconnaissance engine gathers data about a client's computer network from the client, from devices and systems on the client's network, and from the internet regarding various aspects of cybersecurity. each of these aspects is evaluated independently, weighted, and cross-referenced to generate a cybersecurity score by aggregating individual vulnerability and risk factors together to provide a comprehensive characterization of cybersecurity risk using a transparent and traceable methodology. the scoring system itself can be used as a state machine with the cybersecurity score acting as a feedback mechanism, in which a cybersecurity score can be set at a level appropriate for a given organization, and data from clients or groups of clients with more extensive reporting can be used to supplement data for clients or groups of clients with less extensive reporting to enhance cybersecurity analysis and scoring.