Dismiss
InnovationQ will be updated on Sunday, Oct. 22, from 10am ET - noon. You may experience brief service interruptions during that time.
Browse Prior Art Database

Comprehensive Incident Classification Standard

IP.com Disclosure Number: IPCOM000240983D
Publication Date: 2015-Mar-16
Document File: 1 page(s) / 24K

Publishing Venue

The IP.com Prior Art Database

Abstract

Disclosed is the Comprehensive Incident Classification Model. This enhanced set of guidelines and reporting criteria helps companies and organizations identify, classify, reference, and report security incidents in a timely and effective manner.

This text was extracted from a PDF file.
This is the abbreviated version, containing approximately 59% of the total text.

Page 01 of 1

Comprehensive Incident Classification Standard

Current incident classification standards do not adequately record, classify, and codify cybersecurity incidents in an operational environment. The existing guidelines and standard taxonomies in use are typically too vague and one dimensional to provide the level of context and depth needed for enterprise cybersecurity operations and reporting. The current set of standards and guidelines often inhibit the functionality and utility of security reporting within enterprise risk centers, security operations centers, computer incident response teams, and organizational leadership.

A comprehensive framework for enterprise security incident management, analysis, and reporting is needed to advance the process and enable a simplistic means of managing, indexing, and analyzing security incidents enterprise wide.

The novel contribution is the Comprehensive Incident Classification Model. This enhanced set of guidelines and reporting criteria helps companies and organizations identify, classify, reference, and report security incidents in a timely and effective manner. The Comprehensive Incident Classification Model builds upon current industry best practices to provide a holistic snapshot of enterprise security incidents, an enhanced incident management process flow, and additional data elements for synthesis, analysis, and reporting. The new standard provides enterprise security programs with an enhanced tool set for security...