Systems and methods for context-based mitigation of computer security risks

摘要

The apparatus includes a processor operably coupled to the memory. The processor receives a first set of risk assessment rules including a first user privilege criterion and a first device criterion. The first device criteria includes the computing device patch level, network type and / or password policy. The processor identifies a user-specific security risk based on the first set of risk assessment rules and applies a privilege mitigation measure based on the user-specific security risk without communicating with the management server. The processor then receives at the computing device a second updated set of risk assessment rules. Upon detecting another login of the user, the processor identifies the updated user-specific security risk based on the updated set of risk assessment rules, and again without communicating with the management server. Apply modified privilege mitigation measures based on user-specific security risks.