| CPC G06F 8/77 (2013.01) [G06F 3/14 (2013.01); G06F 16/258 (2019.01); G06Q 10/06395 (2013.01); G06Q 30/018 (2013.01); G06N 20/00 (2019.01)] | 20 Claims |
|
1. A method for providing an evidence service to facilitate evidence analytic and controls assessment for an enterprise toolchain, the method being implemented by at least one processor, the method comprising:
compiling, by the at least one processor, raw data via at least one adapter, the raw data including at least one event that relates to a software development life cycle;
retrieving, by the at least one processor from the at least one adapter, the compiled raw data;
identifying, by the at least one processor using at least one model, information that relates to the at least one event from the raw data;
extracting, by the at least one processor, the identified information;
generating, by the at least one processor using the at least one model, at least one structured data set based on the extracted information;
determining, by the at least one processor, at least one controls measurement based on the at least one structured data set; and
automatically detecting, by the at least one processor using the at least one controls measurement, at least one nonconforming software product that is noncompliant with at least one predetermined rule by,
verifying, by the at least one processor, each of the at least one controls measurement based on at least one compliance parameter,
wherein the at least one compliance parameter includes at least one from among a security parameter, a failure parameter, and a deployment parameter.
|