Patents by Inventor Marc Noel Light
Marc Noel Light has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 12200006Abstract: A cybersecurity risk management method may include recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers; receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates; assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier; obtaining respective security scores for the affiliates; and displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.Type: GrantFiled: May 1, 2023Date of Patent: January 14, 2025Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light
-
Patent number: 12099608Abstract: A system and method for setting alert thresholds related to cybersecurity ratings of one or more affiliate entities. An example method includes: obtaining entity data including cybersecurity event data for an affiliate entity; calculating a time-series cybersecurity rating for the affiliate entity based on the entity data; associating an alert reporting threshold with the time-series cybersecurity rating, wherein a comparison of the alert reporting threshold to the time-series cybersecurity rating determines a number of alerts reported for the affiliate entity; applying an alternative alert reporting threshold against the time-series cybersecurity rating to determine an alternative number of alerts reported for the affiliate entity; and updating the alert reporting threshold for the time-series cybersecurity rating to the alternative alert reporting threshold.Type: GrantFiled: June 15, 2023Date of Patent: September 24, 2024Assignee: BitSight Technologies, Inc.Inventors: Marc Noel Light, Tianyi Cai, Thomas Erhardt Montroy
-
Publication number: 20230325505Abstract: A system and method for setting alert thresholds related to cybersecurity ratings of one or more affiliate entities. An example method includes: obtaining entity data including cybersecurity event data for an affiliate entity; calculating a time-series cybersecurity rating for the affiliate entity based on the entity data; associating an alert reporting threshold with the time-series cybersecurity rating, wherein a comparison of the alert reporting threshold to the time-series cybersecurity rating determines a number of alerts reported for the affiliate entity; applying an alternative alert reporting threshold against the time-series cybersecurity rating to determine an alternative number of alerts reported for the affiliate entity; and updating the alert reporting threshold for the time-series cybersecurity rating to the alternative alert reporting threshold.Type: ApplicationFiled: June 15, 2023Publication date: October 12, 2023Inventors: Marc Noel Light, Tianyi Cai, Thomas Erhardt Montroy
-
Patent number: 11783052Abstract: Disclosed herein are computer-implemented methods and systems for forecasting security ratings for an entity. The methods and systems can include generating a plurality of simulated instantiations of a security scenario for the entity, in which the security scenario characterized by a plurality of security events associated with at least one event type. The methods and systems can further include determining a security rating for each instantiation of the plurality of instantiations; and generating a forecast cone based on the determined security ratings for the plurality of instantiations. In some examples, for each event type of the at least one event type, the methods and systems can include determining a rate, duration, and/or temporal placement of the security events associated with the event type over a forecasting period.Type: GrantFiled: November 10, 2021Date of Patent: October 10, 2023Assignee: BitSight Technologies, Inc.Inventors: Marc Noel Light, Liwei Lin, Thomas Erhardt Montroy
-
Publication number: 20230267215Abstract: A computer-implemented method is provided for statistical modeling of entities of a particular type. The method can include obtaining entity data including a plurality of entity data sets, each entity data set associated with a respective entity and including values for one or more static parameters indicative of a type of the entity. Each entity data set can include (i) values for input parameter(s) indicative of a security profile of the entity and (ii) a value of a security class parameter indicative of a security class of the entity based on the values of the input parameters. The method can include training a statistical classifier to infer a value of the security class parameter indicative of the security class of a particular entity of the particular type based on values of one or more of the input parameters indicative of a security profile of the particular entity.Type: ApplicationFiled: April 25, 2023Publication date: August 24, 2023Inventor: Marc Noel Light
-
Publication number: 20230269265Abstract: A cybersecurity risk management method may include recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers; receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates; assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier; obtaining respective security scores for the affiliates; and displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.Type: ApplicationFiled: May 1, 2023Publication date: August 24, 2023Applicant: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light
-
Patent number: 11720679Abstract: A system and method for setting alert thresholds related to cybersecurity ratings of one or more affiliate entities. An example method includes: obtaining entity data including cybersecurity event data for an affiliate entity; calculating a time-series cybersecurity rating for the affiliate entity based on the entity data; associating an alert reporting threshold with the time-series cybersecurity rating, wherein a comparison of the alert reporting threshold to the time-series cybersecurity rating determines a number of alerts reported for the affiliate entity; applying an alternative alert reporting threshold against the time-series cybersecurity rating to determine an alternative number of alerts reported for the affiliate entity; and updating the alert reporting threshold for the time-series cybersecurity rating to the alternative alert reporting threshold.Type: GrantFiled: April 21, 2021Date of Patent: August 8, 2023Assignee: BitSight Technologies, Inc.Inventors: Marc Noel Light, Tianyi Cai, Thomas Erhardt Montroy
-
Patent number: 11689555Abstract: A cybersecurity risk management method may include recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers; receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates; assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier; obtaining respective security scores for the affiliates; and displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.Type: GrantFiled: August 3, 2021Date of Patent: June 27, 2023Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light
-
Patent number: 11675912Abstract: A computer-implemented method is provided for statistical modeling of entities of a particular type. The method can include obtaining entity data including a plurality of entity data sets, each entity data set associated with a respective entity and including values for one or more static parameters indicative of a type of the entity. Each entity data set can include (i) values for input parameter(s) indicative of a security profile of the entity and (ii) a value of a security class parameter indicative of a security class of the entity based on the values of the input parameters. The method can include training a statistical classifier to infer a value of the security class parameter indicative of the security class of a particular entity of the particular type based on values of one or more of the input parameters indicative of a security profile of the particular entity.Type: GrantFiled: May 4, 2021Date of Patent: June 13, 2023Assignee: BitSight Technologies, Inc.Inventor: Marc Noel Light
-
Patent number: 11386510Abstract: The present invention provides a method and system and software that allow users to readily access online legal research tools, while using other applications, such as word processors. One exemplary computer-implemented system provide an add-on software framework that integrates into a host word-processing application on a client access device. The add-on software framework allows users to select from an expandable listing of one or more web applications on a web server, with each of the web application capable of controlling operation of the host word processing application. The web applications facilitate extraction and access to information from the information-retrieval services as well as secondary source reference texts and incorporation of the information in the document or in metadata associated with the document.Type: GrantFiled: August 5, 2010Date of Patent: July 12, 2022Assignee: THOMSON REUTERS ENTERPRISE CENTRE GMBHInventors: Khalid Al-Kofahi, Marc Noel Light, Joel Aaron Hurwitz
-
Publication number: 20220191232Abstract: A cybersecurity risk management method may include recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers; receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates; assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier; obtaining respective security scores for the affiliates; and displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.Type: ApplicationFiled: August 3, 2021Publication date: June 16, 2022Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light
-
Publication number: 20220121753Abstract: Disclosed herein are computer-implemented methods and systems for forecasting security ratings for an entity. The methods and systems can include generating a plurality of simulated instantiations of a security scenario for the entity, in which the security scenario characterized by a plurality of security events associated with at least one event type. The methods and systems can further include determining a security rating for each instantiation of the plurality of instantiations; and generating a forecast cone based on the determined security ratings for the plurality of instantiations. In some examples, for each event type of the at least one event type, the methods and systems can include determining a rate, duration, and/or temporal placement of the security events associated with the event type over a forecasting period.Type: ApplicationFiled: November 10, 2021Publication date: April 21, 2022Inventors: Marc Noel Light, Liwei Lin, Thomas Erhardt Montroy
-
Patent number: 11265330Abstract: A computer-implemented method is provided for comparing the security profile of a particular entity to peer entities. The method can include receiving, for a particular entity, (i) a value for at least one feature and (ii) a number of security records of one or more security risk types. The method can include determining peer entities based on the value of the features; obtaining, for each peer entity, a number of security records; and adjusting the number of peer security records based on the number of entity security records. The method can further include comparing, for one or more security risk types, the received number of security records for the particular entity to the respective adjusted number of security records for each peer entity; and comparing a security profile of the particular entity to security profiles of the population of peer entities based on the comparison for the security risk types.Type: GrantFiled: July 29, 2020Date of Patent: March 1, 2022Assignee: BitSight Technologies, Inc.Inventors: Marc Noel Light, Liwei Lin, Thomas Erhardt Montroy, Miguel Pinto
-
Patent number: 11200323Abstract: Disclosed herein are computer-implemented methods and systems for forecasting security ratings for an entity. The methods and systems can include generating a plurality of simulated instantiations of a security scenario for the entity, in which the security scenario characterized by a plurality of security events associated with at least one event type. The methods and systems can further include determining a security rating for each instantiation of the plurality of instantiations; and generating a forecast cone based on the determined security ratings for the plurality of instantiations. In some examples, for each event type of the at least one event type, the methods and systems can include determining a rate, duration, and/or temporal placement of the security events associated with the event type over a forecasting period.Type: GrantFiled: March 21, 2019Date of Patent: December 14, 2021Assignee: BitSight Technologies, Inc.Inventors: Marc Noel Light, Liwei Lin, Thomas Erhardt Montroy
-
Publication number: 20210374246Abstract: A system and method for setting alert thresholds related to cybersecurity ratings of one or more affiliate entities. An example method includes: obtaining entity data including cybersecurity event data for an affiliate entity; calculating a time-series cybersecurity rating for the affiliate entity based on the entity data; associating an alert reporting threshold with the time-series cybersecurity rating, wherein a comparison of the alert reporting threshold to the time-series cybersecurity rating determines a number of alerts reported for the affiliate entity; applying an alternative alert reporting threshold against the time-series cybersecurity rating to determine an alternative number of alerts reported for the affiliate entity; and updating the alert reporting threshold for the time-series cybersecurity rating to the alternative alert reporting threshold.Type: ApplicationFiled: April 21, 2021Publication date: December 2, 2021Inventors: Marc Noel Light, Tianyi Cai, Thomas Erhardt Montroy
-
Publication number: 20210326449Abstract: A computer-implemented method is provided for statistical modeling of entities of a particular type. The method can include obtaining entity data including a plurality of entity data sets, each entity data set associated with a respective entity and including values for one or more static parameters indicative of a type of the entity. Each entity data set can include (i) values for input parameter(s) indicative of a security profile of the entity and (ii) a value of a security class parameter indicative of a security class of the entity based on the values of the input parameters. The method can include training a statistical classifier to infer a value of the security class parameter indicative of the security class of a particular entity of the particular type based on values of one or more of the input parameters indicative of a security profile of the particular entity.Type: ApplicationFiled: May 4, 2021Publication date: October 21, 2021Inventor: Marc Noel Light
-
Patent number: 11122073Abstract: A cybersecurity risk management method may include recommending, for each of a plurality of affiliates of an entity, a respective cybersecurity criticality tier selected from a set of cybersecurity criticality tiers; receiving user input adjusting and/or adopting the recommended cybersecurity criticality tier for each of the affiliates; assigning each of the affiliates to the respective adjusted or adopted cybersecurity criticality tier; obtaining respective security scores for the affiliates; and displaying a user interface component configured to show a visualization of a cybersecurity risk management plan of the entity with respect to the plurality of affiliates, wherein the risk management plan partitions the affiliates into a plurality of affiliate sets based on the security scores and the assigned cybersecurity criticality tiers of the affiliates and specifies, for each of the affiliate sets, an action to be taken by the entity with respect to the affiliates in the affiliate set.Type: GrantFiled: December 11, 2020Date of Patent: September 14, 2021Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light
-
Patent number: D1010666Type: GrantFiled: November 17, 2021Date of Patent: January 9, 2024Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light, Blythe Meyer, Amanda Ravanesi, Vanessa Jankowski
-
Patent number: D1038972Type: GrantFiled: November 13, 2023Date of Patent: August 13, 2024Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light, Blythe Meyer, Amanda Ravanesi, Vanessa Jankowski
-
Patent number: D1038973Type: GrantFiled: November 13, 2023Date of Patent: August 13, 2024Assignee: BitSight Technologies, Inc.Inventors: Tianyi Cai, Thomas Erhardt Montroy, Marc Noel Light, Blythe Meyer, Amanda Ravanesi, Vanessa Jankowski