Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to input the user activity information into a first machine learning model that is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a second machine learning model that is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: Systems, computer program products, and methods are described herein for automated detection of source code discrepancies. The present disclosure is configured to receive a data transmission including a text file and a source code file; process the source code file via a machine learning engine, where an output of the machine learning engine includes a plurality of identified updates; process the text file via a natural language processing engine, where an output of the natural language processing engine includes a plurality of expected updates; identify a difference between the plurality of identified updates and the plurality of expected updates; and perform a remedial action.

Abstract: Systems, computer program products, and methods are described herein for code revision impact analysis. The present disclosure is configured to generate a system map based on data received from a plurality of network devices; receive a data transmission including a text file; process the text file via a natural language processing engine, where an output of the natural language processing engine comprises a plurality of expected updates; determine, based on the system map, at least one downstream effect of the plurality of expected updates; and perform a remedial action.

Abstract: A device that is configured to receive user activity information from a network device. The user activity information includes information about user interactions with the network device for a plurality of users. The device is further configured to input the user activity information into a machine learning model. The machine learning model is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The set of bad actor candidates identifies one or more users from among the plurality of users. The device is further configured to receive the set of bad actor candidates from the machine learning model and to output the set of bad actor candidates.

Abstract: Systems, computer program products, and methods are described herein for automatically classifying data based on data usage and accessing patterns in an electronic network. The present invention is configured to receive at least one query log comprising a plurality of data identifiers; generate a data identifier total based on each data identifier of the plurality of data identifiers; determine a data classification for each data identifier based on the data identifier total, wherein the data classification comprises at least one of an important classification or an unimportant classification; and generate a data catalogue comprising at least one data identifier associated with the important classification.

Abstract: Systems, computer program products, and methods are described herein for dynamically determining software application coverage in an electronic network. The present invention is configured to determine a potential vulnerability associated with the plurality of application identifiers; generate a coverage score associated with each application identifier of the plurality of application identifiers, wherein the coverage score comprises an ability of at least one of the software application or the component to manage the potential vulnerability; generate a coverage ranking of the plurality of application identifiers, wherein the coverage ranking is based on the coverage score associated with each application identifier of the plurality of application identifiers; and store the coverage ranking of the plurality of application identifiers in a coverage ranking database, wherein the coverage ranking of the plurality of application identifiers is based on the potential vulnerability.

Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to input the user activity information into a first machine learning model that is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a second machine learning model that is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to input the user activity information into a first machine learning model that is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a second machine learning model that is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to receive a set of bad actor candidates that identifies one or more users from among the plurality of users. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a machine learning model. The machine learning model is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: A system for classifying a data item to communicate to authorized users extracts features from the data item, where the features comprise a responsibility feature and a sensitivity feature. The responsibility feature indicates a job responsibility associated with the data item. The sensitivity feature indicates a sensitivity level of the data item. The system determines, based on the responsibility feature, that the data item belongs to a particular responsibility class. The system determines, based on the sensitivity feature, that the data item belongs to a particular sensitivity class. The system determines whether a user to whom the data item is directed belongs to the particular responsibility class and sensitivity class to which the data item belongs. The system sends the data item to the user, if is it determined that the user belongs to the particular responsibility class and sensitivity class to which the data item belongs.

Abstract: A device that is configured to receive user activity information from a network device. The user activity information includes information about user interactions with the network device for a plurality of users. The device is further configured to input the user activity information into a machine learning model. The machine learning model is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The set of bad actor candidates identifies one or more users from among the plurality of users. The device is further configured to receive the set of bad actor candidates from the machine learning model and to output the set of bad actor candidates.

Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to receive a set of bad actor candidates that identifies one or more users from among the plurality of users. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a machine learning model. The machine learning model is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: A device that is configured to receive user activity information that includes information about user interactions with a network device for a plurality of users. The device is further configured to input the user activity information into a first machine learning model that is configured to receive user activity information and to output a set of bad actor candidates based on the user activity information. The device is further configured to filter the user activity information based on the set of bad actor candidates. The device is further configured to input the filtered user activity information into a second machine learning model that is configured to receive the filtered user activity information and to output system exposure information that identifies network security threats. The device is further configured to identify network security actions based on the network security threats and to execute the network security actions.

Abstract: A system for classifying a data item to communicate to authorized users extracts features from the data item, where the features comprise a responsibility feature and a sensitivity feature. The responsibility feature indicates a job responsibility associated with the data item. The sensitivity feature indicates a sensitivity level of the data item. The system determines, based on the responsibility feature, that the data item belongs to a particular responsibility class. The system determines, based on the sensitivity feature, that the data item belongs to a particular sensitivity class. The system determines whether a user to whom the data item is directed belongs to the particular responsibility class and sensitivity class to which the data item belongs. The system sends the data item to the user, if is it determined that the user belongs to the particular responsibility class and sensitivity class to which the data item belongs.

Abstract: Aspects of the disclosure relate to codebase effort tracking. A computing platform may detect accessing of a first code resource by a user of a computing device and initiate tracking of a first interaction time associated with the first code resource. Subsequently, the computing platform may detect loss of interaction with the first code resource and terminate tracking of the first interaction time. Then, the computing platform may detect accessing of a second code resource by the user of the computing device and initiate tracking of a second interaction time associated with the second code resource. Based on the tracking of the respective interaction times, the computing platform may generate and store a code complexity metric. Then, the computing platform may repeat one or more steps for a third code resource and update the code complexity metric based on a third interaction time associated with the third code resource.