Patents Assigned to CSRSI, Inc.
-
Publication number: 20140089214Abstract: Computer-implemented methods and systems for data breach compliance are disclosed. Organization related information may be received. Breach information relating to a data breach event of the organization may be received. The breach information may include, for example, breach event description information, compromised personally identifiable information, and remediation action information. A breach report may be generated based on the breach information, the organization related information, and one or more rules related to data breach. At least one reporting entity may be determined based on the organization related information, the breach information, and the one or more rules. The breach report may be output.Type: ApplicationFiled: November 27, 2013Publication date: March 27, 2014Applicant: CSRSI, Inc.Inventor: Warren Ross Federgreen
-
Patent number: 8626671Abstract: Computer-implemented methods and systems for data breach compliance are disclosed. Organization related information may be received. Breach information relating to a data breach event of the organization may be received. The breach information may include, for example, breach event description information, compromised personally identifiable information, and remediation action information. A breach report may be generated based on the breach information, the organization related information, and one or more rules related to data breach. At least one reporting entity may be determined based on the organization related information, the breach information, and the one or more rules. The breach report may be output.Type: GrantFiled: January 17, 2013Date of Patent: January 7, 2014Assignee: CSRSI, Inc.Inventor: Warren Ross Federgreen
-
Publication number: 20130262328Abstract: A computer-implemented method and system data breach compliance is disclosed. Organization related information may be received. Breach information relating to a data breach event of the organization may be received. The breach information may include, for example, breach event description information, compromised personal identification information, and remediation action information. A breach report may be generated based on the breach information, the organization related information, and one or more rules related to data breach. At least one reporting entity may be determined based on the organization related information, the breach information, and the one or more rules. The breach report may be output.Type: ApplicationFiled: March 30, 2012Publication date: October 3, 2013Applicant: CSRSI, Inc.Inventor: Warren Ross Federgreen
-
Publication number: 20130262329Abstract: Computer-implemented methods and systems for data breach compliance are disclosed. Organization related information may be received. Breach information relating to a data breach event of the organization may be received. The breach information may include, for example, breach event description information, compromised personally identifiable information, and remediation action information. A breach report may be generated based on the breach information, the organization related information, and one or more rules related to data breach. At least one reporting entity may be determined based on the organization related information, the breach information, and the one or more rules. The breach report may be output.Type: ApplicationFiled: January 17, 2013Publication date: October 3, 2013Applicant: CSRSI, INC.Inventor: Warren Ross Federgreen
-
Patent number: 8296244Abstract: A method and system for guiding end-users with respect to payment card data security standards. The system uses guidance questions that are worded simply and intelligibly so that end-users, regardless of their technical background or expertise, can understand the underlying issues and provide the proper answer. The guidance questions are generated from the PCI DSS SAQ and related guidance documents, to generate a list of positive, negative or non-applicable SAQ answers at the end of the process. The system generates action items with applicable policy statements for negative answers, if necessary, such that a completed questionnaire can be generated with all positive answers and sent to the authoritative entity. The system also generates vulnerability level reports based on the end-user's answers to assist the end-user and the host in assessing PCI DSS compliance readiness. The host can process the generated information, for example, to do risk analysis or risk management.Type: GrantFiled: December 23, 2011Date of Patent: October 23, 2012Assignee: CSRSI, Inc.Inventor: Richard W. Heroux