Bank of America Corporation
NETWORK VULNERABILITY ASSESSMENT TOOL

Abstract:

A system includes a plurality of servers hosting a plurality of software applications, a data lake, and a vulnerability assessment tool. The data lake is configured to store data related to vulnerabilities in the servers and applications. The data lake also stores data on the number of intrusion events detected on each application. The vulnerability assessment tool is configured to generate logic tables relating the data on server vulnerabilities, application vulnerabilities, and application intrusion counts. The vulnerability assessment tool may use the extrapolations from the newly ordered data to flag applications or servers for prioritized security improvements.