{"schema_version":"1.0","canonical_url":"https://patentable.app/patents/US-11469963","patent":{"patent_number":"US-11469963","title":"Cybersecurity incident response and security operation system employing playbook generation through custom machine learning","assignee":null,"inventors":[],"filing_date":"2019-10-07T00:00:00.000Z","publication_date":"2022-10-11T00:00:00.000Z","cpc_codes":["H04L","G06F","G06F","H04L","H04L","H04L","H04L","G06F","H04L","H04L"],"num_claims":18,"abstract":"A new cybersecurity incident is registered at a security incident response platform. At a playbook generation system, details are received of the new cybersecurity incident from the security incident response platform. At least some of the details correspond to a set of features of the new cybersecurity incident. A set or subset of nearest neighbors of the new cybersecurity incident is localized in a feature space. The nearest neighbors of the new cybersecurity incident are other cybersecurity incidents having a distance from the new cybersecurity incident within the feature space that is defined by differences in features of the nearest neighbors with respect to the set of features of the new cybersecurity incident. A custom playbook is created for responding to the new cybersecurity incident. The custom playbook has one or more prescriptive procedures, for responding to the new cybersecurity incident registered by the security incident response platform, that are based on occurrences of prescriptive procedures previously employed in response to the nearest neighbor cybersecurity incidents, and on distances of the nearest neighbors of the new cybersecurity incident in the feature space. A user of the security incident response platform is presented with the custom playbook containing the one or more prescriptive procedures for responding to the new cybersecurity incident. The user of the security incident response platform initiates the one or more prescriptive procedures contained in the custom playbook to respond to the new cybersecurity incident."},"analysis":{"summary":null,"layman_explanation":null,"technical_analysis":null,"business_analysis":null,"faqs":null,"topics":[],"tech_cluster":null},"seo":{"title":"Cybersecurity incident response and security operation system employing playbook generation through custom machine learning","description":"A new cybersecurity incident is registered at a security incident response platform. At a playbook generation system, details are received of the new cybersecurity incident from the security incident ","keywords":[]},"attribution":{"source":"Patentable","source_url":"https://patentable.app","canonical_url":"https://patentable.app/patents/US-11469963","license":"CC-BY-4.0-like","license_terms":"AI-generated analysis on this page (summary, layman_explanation, technical_analysis, business_analysis, faqs) may be reused with attribution and a visible link back to the canonical URL above. Patent abstracts, claims, and bibliographic data are USPTO public domain.","required_link":"https://patentable.app/patents/US-11469963","citation_suggestion":"Patentable. \"Cybersecurity incident response and security operation system employing playbook generation through custom machine learning\" (US-11469963). https://patentable.app/patents/US-11469963","copyright_holder":"Nomic Interactive Technology LLC"},"links":{"html":"https://patentable.app/patents/US-11469963","json":"https://patentable.app/api/llm-context/US-11469963","site":"https://patentable.app","llms_txt":"https://patentable.app/llms.txt"},"generated_at":"2026-05-31T05:39:47.426Z"}