Abstract: A system and method for continuously improving the cybersecurity rating of a firm includes a feed processor configured to parse at least one cybersecurity report and to feed for building an instance graph. The system may identify, measure, and monitor portfolio dimensions of public-facing digital artifacts. In addition, the system and method may each include the instance graph being compared by a correlation engine with a reference graph to generate automated or semi-automated remediation recommendations that may lead to continuous improvement of a cybersecurity rating for an organization or firm.

Abstract: A system and method for generating security and compliance-aware software delivery pipelines includes a dashboard for configuring and inputting an application profile and an application context. In addition, the system and method each include an application profiler captures, discovers, and stores one or more attributes of an application, along with a pipeline generator that receives information from the dashboard to ultimately generate at least one software delivery pipeline outfitted with security policies and compliance-aware guidelines.

Abstract: A method for updating an application executing on a virtual machine includes replicating the virtual machine to produce a replica, applying an update to the replica that is scheduled to be made to the virtual machine, in parallel with the applying, updating one of the virtual machine and the replica so that a state of the virtual machine matches a state of the replica, and continuing execution of the application on one of the virtual machine and the replica.

Abstract: Threat intelligence management is provided in a security and compliance environment. A threat explorer platform or module of a security and compliance service may detect, investigate, manage, and provide actionable insights for threats at an organizational level. Working with a data insights platform that collects different types of signals (metadata, documents, activities, etc.) and correlates in a multi-stage evaluation, the threat intelligence module may provide actionable visual information on potential threats, affected areas, and actionable insights derived from internal threat data and external information using contextual correlation of data within the data insight platform. User experience may be dynamically adjusted at multiple levels based on context and allow users to drill down arbitrarily deep.

Abstract: A method for updating an application executing on a virtual machine includes replicating the virtual machine to produce a replica, applying an update to the replica that is scheduled to be made to the virtual machine, in parallel with the applying, updating one of the virtual machine and the replica so that a state of the virtual machine matches a state of the replica, and continuing execution of the application on one of the virtual machine and the replica.

Abstract: A method for updating an application executing on a virtual machine includes replicating the virtual machine to produce a replica, applying an update to the replica that is scheduled to be made to the virtual machine, in parallel with the applying, updating one of the virtual machine and the replica so that a state of the virtual machine matches a state of the replica, and continuing execution of the application on one of the virtual machine and the replica.

Abstract: Threat intelligence management is provided in a security and compliance environment. A threat explorer platform or module of a security and compliance service may detect, investigate, manage, and provide actionable insights for threats at an organizational level. Working with a data insights platform that collects different types of signals (metadata, documents, activities, etc.) and correlates in a multi-stage evaluation, the threat intelligence module may provide actionable visual information on potential threats, affected areas, and actionable insights derived from internal threat data and external information using contextual correlation of data within the data insight platform. User experience may be dynamically adjusted at multiple levels based on context and allow users to drill down arbitrarily deep.

Abstract: Methods, systems, and articles of manufacture for injecting faults at select execution points of distributed applications are provided herein. A method includes monitoring a run-time state of each of multiple components of a distributed application to determine one or more sequence of events that triggers a fault injection point at one of the multiple components; defining a fault injection scenario in a specification based on said monitoring, wherein said fault injection scenario comprises a description of one or more sequence of events during which an intended fault is to be injected to a target component of the multiple components at one selected event; and executing the fault injection defined in the specification to perform injection of the intended fault during run-time of the distributed application.

Abstract: A method for updating an application executing on a virtual machine includes replicating the virtual machine to produce a replica, applying an update to the replica that is scheduled to be made to the virtual machine, in parallel with the applying, updating one of the virtual machine and the replica so that a state of the virtual machine matches a state of the replica, and continuing execution of the application on one of the virtual machine and the replica.

Abstract: Methods, systems, and articles of manufacture for injecting faults at select execution points of distributed applications are provided herein. A method includes monitoring a run-time state of each of multiple components of a distributed application to determine one or more sequence of events that triggers a fault injection point at one of the multiple components; defining a fault injection scenario in a specification based on said monitoring, wherein said fault injection scenario comprises a description of one or more sequence of events during which an intended fault is to be injected to a target component of the multiple components at one selected event; and executing the fault injection defined in the specification to perform injection of the intended fault during run-time of the distributed application.

Abstract: A method, an apparatus and an article of manufacture for automated validation of compliance in a cloud server. The method includes remotely accessing a target cloud server to discover at least one configuration setting of the target cloud server, integrating the at least one configuration setting from the target cloud server with information from at least one back-end tool to produce compliance evidence, and automatically answering a set of at least one checklist question for activation compliance validation of the target cloud server based on the compliance evidence.