FIELD: computer engineering.
SUBSTANCE: information security incident response method includes steps of: obtaining information on the detected information security incident from the security component; generating a response scenario on the computer device according to the obtained information; executing the generated response script to eliminate the consequences of the detected information security incident; transmitting the result of the execution of the incident response scenario to the server for evaluation result of script execution; scenario of responding to an information security incident is changed according to the received instructions.
EFFECT: faster response to a new information security (IS) incident on a computer device.
15 cl, 4 dwg
| Title | Year | Author | Number |
|---|---|---|---|
| METHOD FOR ADJUSTING THE PARAMETERS OF A MACHINE LEARNING MODEL IN ORDER TO IDENTIFY FALSE TRIGGERING AND INFORMATION SECURITY INCIDENTS | 2020 |
|
RU2763115C1 |
| METHOD FOR PROCESSING INFORMATION SECURITY EVENTS PRIOR TO TRANSMISSION FOR ANALYSIS | 2020 |
|
RU2762528C1 |
| METHOD OF USING LARGE LANGUAGE MODELS WHEN RESPONDING TO INFORMATION SECURITY INCIDENTS | 2023 |
|
RU2825972C1 |
| METHOD OF GENERATING REQUESTS TO LARGE LANGUAGE MODEL WHEN MONITORING SECURITY AND RESPONDING TO INCIDENTS | 2023 |
|
RU2825973C1 |
| METHOD OF COMBINING LARGE LANGUAGE MODEL AND SECURITY AGENT | 2023 |
|
RU2825975C1 |
| SYSTEM AND METHOD OF CORRELATING EVENTS FOR DETECTING INFORMATION SECURITY INCIDENT | 2019 |
|
RU2739864C1 |
| METHOD AND SYSTEM OF CYBER TRAINING | 2022 |
|
RU2808388C1 |
| SYSTEM AND METHOD FOR PREDICTING SIGNS OF INFORMATION SECURITY INCIDENTS IN AUTOMATED CONTROL SYSTEMS | 2023 |
|
RU2815595C1 |
| SYSTEM AND METHOD OF AUTOMATIC INVESTIGATION OF SAFETY INCIDENTS IN AUTOMATED SYSTEM | 2017 |
|
RU2664018C1 |
| METHOD AND SYSTEM FOR MAKING DECISION ON NEED FOR AUTOMATED RESPONSE TO INCIDENT | 2020 |
|
RU2738334C1 |
