Press n or j to go to the next uncovered block, b, p or k for the previous block.
| 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 225 226 227 228 229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244 245 246 247 248 249 250 251 252 253 254 255 256 257 258 259 260 261 262 263 264 265 266 267 268 269 270 271 272 273 274 275 276 277 278 279 280 281 282 283 284 285 286 287 288 289 290 291 292 293 294 295 296 297 298 299 300 301 302 303 304 305 306 307 308 309 310 311 312 313 314 315 316 317 318 319 320 321 322 323 324 325 326 327 | 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x 1x | import { SecurityLevel } from "../../types/cia"; import { CIADetails } from "../../types/cia-services"; import { getSecurityLevelColorPair } from "../../utils/colorUtils"; /** * Detailed availability security options for each security level * * ## Business Perspective * * These options define the technical and business implications of different * availability security levels, focusing on uptime guarantees, recovery times, * and business continuity considerations. 🔄 */ const availabilityData: Record<SecurityLevel, CIADetails> = { None: { description: "No availability measures are in place. The system is prone to frequent, unpredictable outages.", technical: "No redundancy, backup systems, monitoring, or disaster recovery procedures are implemented.", businessImpact: "Severe disruptions occur during outages, potentially resulting in revenue losses estimated at 5-10% annually under prolonged conditions.", capex: 0, opex: 0, bg: getSecurityLevelColorPair("None").bg, text: getSecurityLevelColorPair("None").text, recommendations: [ "Implement basic monitoring to detect outages early", "Establish a rudimentary backup process with periodic testing", "Document manual recovery procedures with clear roles", "Establish baseline uptime metrics to gauge current performance", "Identify and prioritize critical systems for improvement", ], uptime: "<90%", businessImpactDetails: { summary: "Comprehensive impact analysis", financial: { description: "Prolonged outages can lead to significant revenue loss, estimated at 5-10% of annual revenue.", riskLevel: "Critical", annualRevenueLoss: "5-10% of annual revenue", }, operational: { description: "Operations are severely disrupted with recovery timelines that are highly unpredictable.", riskLevel: "Critical", meanTimeToRecover: "Unpredictable (hours to days)", }, regulatory: { description: "Likely violates basic service agreements and regulatory requirements.", riskLevel: "High", complianceViolations: ["SLAs", "Basic industry standards"], }, }, securityIcon: "⚠️", valuePoints: [ "No availability value", "Systems may be unavailable for extended periods", "Unpredictable outages disrupt business operations", "No disaster recovery procedures in place", "Not suitable for business-critical applications", ], technicalImplementation: { description: "No availability measures or redundancy implemented", implementationSteps: [ "No implementation required as no controls are in place", "Consider documenting current system architecture as a baseline", ], effort: { development: "None", maintenance: "None", expertise: "None", }, }, }, Low: { description: "Basic availability measures are present but have significant limitations, leading to extended downtime during disruptions.", technical: "Reliance on manual backup processes and limited monitoring, with basic recovery documentation.", businessImpact: "Moderate disruptions can lead to revenue losses estimated at 3-5% annually, heavily dependent on recovery speed.", capex: 5, opex: 3, bg: getSecurityLevelColorPair("Low").bg, text: getSecurityLevelColorPair("Low").text, recommendations: [ "Implement scheduled backups and test recovery procedures regularly", "Set up basic monitoring alerts for early detection", "Document recovery processes and establish a communication protocol for outages", ], uptime: "95%", rto: "24-48 hours", rpo: "24 hours", mttr: "12-24 hours", businessImpactDetails: { summary: "Comprehensive impact analysis", financial: { description: "Revenue impact is estimated at around 3-5% annually due to extended downtimes.", riskLevel: "High", annualRevenueLoss: "3-5% of annual revenue", }, operational: { description: "Business disruptions are significant and require manual intervention, leading to slower recovery.", riskLevel: "High", meanTimeToRecover: "12-24 hours", }, }, securityIcon: "🔑", valuePoints: [ "Basic availability with minimal protection against outages", "Manual recovery processes that require significant time", "Scheduled backups but with large recovery point objectives", "Suitable for non-critical internal systems", "Provides a foundational availability posture", ], technicalImplementation: { description: "Basic manual backup and recovery processes", implementationSteps: [ "Set up scheduled system backups", "Document basic recovery procedures", "Implement simple monitoring with email alerts", ], effort: { development: "Days (1-5)", maintenance: "Weekly manual checks", expertise: "Junior IT staff", }, }, }, Moderate: { description: "Standard availability measures that yield acceptable uptime with planned disaster recovery processes.", technical: "Scheduled backups, automated monitoring with alerts, documented recovery procedures, and partial redundancy for key components.", businessImpact: "Occasional disruptions are generally contained, with revenue losses estimated at 1-3% annually.", capex: 15, opex: 10, bg: getSecurityLevelColorPair("Moderate").bg, text: getSecurityLevelColorPair("Moderate").text, recommendations: [ "Enhance redundancy for mission-critical systems", "Automate backup and disaster recovery testing", "Integrate comprehensive monitoring with defined SLAs", ], uptime: "99%", rto: "4-8 hours", rpo: "4 hours", mttr: "2-4 hours", businessImpactDetails: { summary: "Comprehensive impact analysis", financial: { description: "Revenue impact is modest, estimated at approximately 1-3% annually, assuming typical outage scenarios.", riskLevel: "Medium", annualRevenueLoss: "1-3% of annual revenue", }, operational: { description: "Disruptions occur infrequently and recovery is relatively quick.", riskLevel: "Medium", meanTimeToRecover: "2-4 hours", }, }, securityIcon: "🔓", valuePoints: [ "Balanced availability with standard protection measures", "Semi-automated recovery procedures", "Regular backups with moderate recovery point objectives", "Suitable for standard business applications", "Meets basic availability requirements for most operations", ], technicalImplementation: { description: "Standard availability controls with some automation", implementationSteps: [ "Implement automated backup systems", "Set up monitoring and alerting infrastructure", "Deploy basic redundancy for key components", "Create and test disaster recovery procedures", ], effort: { development: "Weeks (2-4)", maintenance: "Scheduled weekly maintenance", expertise: "Mid-level IT staff", }, }, }, High: { description: "Robust availability measures with high redundancy and automated recovery systems ensure near-continuous operations.", technical: "N+1 redundancy, multi-region standby systems, automated failover, comprehensive monitoring, and regular disaster recovery testing.", businessImpact: "Business continuity is well-maintained with negligible revenue impact (generally under 1%).", capex: 30, opex: 20, bg: getSecurityLevelColorPair("High").bg, text: getSecurityLevelColorPair("High").text, recommendations: [ "Deploy N+1 redundancy for all critical systems", "Implement automated failover and real-time monitoring", "Conduct regular disaster recovery drills and define escalation procedures", ], uptime: "99.9%", rto: "15-60 minutes", rpo: "15 minutes", mttr: "10-30 minutes", businessImpactDetails: { summary: "Comprehensive impact analysis", financial: { description: "Revenue impact is minimal, generally estimated at less than 1% of annual revenue.", riskLevel: "Low", annualRevenueLoss: "<1% of annual revenue", }, operational: { description: "Disruptions are rare and recovery is almost instantaneous due to automation.", riskLevel: "Low", meanTimeToRecover: "10-30 minutes", }, strategic: { description: "High reliability can support market expansion and reinforces customer trust.", riskLevel: "Low", }, }, securityIcon: "🔒", valuePoints: [ "Strong availability with robust protection against outages", "Automated failover and rapid recovery capabilities", "Near real-time replication with minimal data loss risk", "Suitable for business-critical applications", "Supports high-value customer-facing services", ], technicalImplementation: { description: "Advanced availability architecture with automated recovery", implementationSteps: [ "Deploy N+1 redundancy across all critical infrastructure", "Implement automated failover mechanisms", "Set up comprehensive monitoring and alerting", "Establish regular disaster recovery testing", ], effort: { development: "Months (1-3)", maintenance: "Continuous monitoring, weekly testing", expertise: "Senior IT specialists", }, }, }, "Very High": { description: "Maximum availability with continuous operations enabled by multi-region redundancy, real-time replication, and fully automated recovery.", technical: "N+2 redundancy, active-active multi-region architecture, real-time replication, and automated remediation ensure near-zero downtime.", businessImpact: "Operational continuity is nearly uninterrupted under normal conditions, with revenue impact considered negligible—though extreme events remain a risk.", capex: 60, opex: 40, bg: getSecurityLevelColorPair("Very High").bg, text: getSecurityLevelColorPair("Very High").text, recommendations: [ "Implement N+2 redundancy across all critical components", "Deploy an active-active multi-region architecture with real-time replication", "Establish fully automated remediation systems and 24/7 operations support", "Conduct regular chaos engineering exercises to stress-test resilience", ], uptime: "99.99%", rto: "<5 minutes", rpo: "<1 minute", mttr: "<5 minutes", businessImpactDetails: { summary: "Comprehensive impact analysis", financial: { description: "Revenue losses due to availability issues are negligible under normal conditions.", riskLevel: "Minimal", }, operational: { description: "Business operations are maintained nearly continuously with rapid, automated recovery.", riskLevel: "Minimal", meanTimeToRecover: "<5 minutes", }, strategic: { description: "Superior reliability offers a competitive advantage in high-demand markets.", riskLevel: "Minimal", }, regulatory: { description: "Exceeds stringent regulatory and SLA requirements for availability.", riskLevel: "Minimal", complianceViolations: [], }, }, securityIcon: "🔐", valuePoints: [ "Maximum availability with comprehensive protection", "Active-active multi-region deployment with instant failover", "Real-time replication with virtually no data loss", "Suitable for mission-critical systems with zero downtime requirements", "Supports high-frequency financial transactions and life-critical systems", ], technicalImplementation: { description: "Enterprise-grade high availability infrastructure", implementationSteps: [ "Implement N+2 redundancy across all system components", "Deploy active-active architecture across multiple regions", "Set up real-time data replication and synchronization", "Implement automated self-healing mechanisms", "Establish continuous chaos engineering testing", ], effort: { development: "Months (4-6+)", maintenance: "24/7 operations team, continuous monitoring", expertise: "Senior availability specialists and architects", }, }, }, }; export default availabilityData; |