Visit our website: http://bit.ly/2GtXaiw
Automated Mapping for Security Compliance
Satish Swargman, Lead Security Architect, Cerner
Abstract:
There are several security standards, guidelines and controls from different agencies such as NIST, DISA, GDPR and OWASP. It becomes a daunting task to go through all the security guidelines and controls to meet compliance in the Healthcare industry with respect to data privacy and security. Since there is overlap in the guidelines from the various security agencies, mapping them to common tasks helps operational efficiency and effectively show compliance. A machine learning approach will be demonstrated to show how the mapping can be made easier for the security controls from different agencies. A consistent mapping with less human errors and a tool to facilitate grouping of related controls for security practitioners will be presented. This technique can be applied to different document corpuses and examples from ASVS, STIGs and NIST will be demonstrated. Proven statistical methods with NLP and innovative ways to perform concept search, score, rank, boost, group, relate and map raw documents will also be presented. The same techniques can be applied to self-organize clusters and effectively link related documents with score relevance using concept search on TREC Precision Medicine / Clinical Support Decision. The audience will walk away with a better understanding of how machine learning can be applied to several problem areas in the Healthcare industry.
Add comment