主权项 |
1. A method for prevention of malicious use of authorized access of an electronic database of company information by an authorized actor of a company, comprising the steps of:
using a computer implemented threat assessment system, said threat assessment system comprising the steps of:
collecting data related to authorized access of the company information gathered by the authorized actor into an access database with a data collection engine;using a prediction engine to analyzer the access database, said prediction engine:
calibrating at least one access pattern of the authorized actor, andgenerating a potential threat using differences between access information of the actor and the at least one access pattern;testing the potential threat against company policy using a policy engine;generating a mathematical threat level of the potential threat with a threat assessment engine; andsaid threat assessment system combining output of said prediction engine, said policy engine, and said threat assessment engine to generate a specific threat; and reporting said specific threat with a reporting system. |