forked from Ke0xes/SOCStrategy
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathtech_inventory.html
More file actions
1011 lines (978 loc) · 54.4 KB
/
tech_inventory.html
File metadata and controls
1011 lines (978 loc) · 54.4 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>ACME CDC Example Conceptual Technical Architecture</title>
<style>
body {
font-family: Arial, sans-serif;
background-color: #07182D;
color: white;
margin: 0;
padding: 20px;
min-height: 100vh;
}
.page-main-title {
margin: 0 0 30px 10px;
color: #fff;
font-size: 2rem;
letter-spacing: 1px;
font-weight: bold;
font-family: Arial, sans-serif;
}
.page-actions-bar {
display: flex;
justify-content: space-between;
align-items: center;
margin-bottom: 30px;
padding-left: 10px;
padding-right: 10px;
}
.back-link {
display: inline-block;
padding: 8px 15px;
background-color: #112a44;
color: #02C8FF;
text-decoration: none;
border-radius: 5px;
border: 1px solid #02C8FF;
transition: background-color 0.3s ease, color 0.3s ease;
font-size: 0.9em;
}
.back-link:hover {
background-color: #02C8FF;
color: #112a44;
}
.global-controls {
display: flex;
gap: 10px;
}
.global-controls button {
padding: 8px 15px;
font-size: 0.9em;
background-color: #F0F4F8; /* Example */
color: #0a2540; /* Example */
border: none;
border-radius: 4px;
cursor: pointer;
transition: background-color 0.2s ease;
}
.global-controls button:hover {
background-color: #02C8FF;
}
.content-area {
background-color: rgba(17, 42, 68, 0.8);
border: 1px solid #02C8FF; /* Matching other detail pages */
border-radius: 8px;
padding: 30px;
min-height: 30px;
}
.content-area h2 {
color: #FECC02;
text-align: center;
margin-top: 0;
font-size: 1.8rem;
margin-bottom: 25px;
}
/* Styles for Expandable Tech Architecture List */
.expandable-list {
list-style-type: none;
padding-left: 0;
}
.expandable-list ul { /* Nested lists for tech categories/items */
list-style-type: none;
padding-left: 25px;
display: none; /* Initially hidden */
margin-top: 5px;
margin-bottom: 8px;
}
.expandable-list li {
margin-bottom: 5px;
}
.expandable-list .list-item-header {
display: flex;
align-items: center;
padding: 8px 12px;
cursor: pointer;
border-radius: 4px;
transition: background-color 0.2s ease;
border-left: 3px solid transparent;
}
.expandable-list .list-item-header:hover {
background-color: rgba(2, 200, 255, 0.1);
}
.expandable-list .list-item-header.expanded {
/* background-color: rgba(2, 200, 255, 0.05); */
}
.expandable-list .toggler-icon {
margin-right: 10px;
font-size: 0.8em;
width: 15px;
display: inline-block;
text-align: center;
transition: transform 0.2s ease-in-out;
color: #FECC02;
}
.expandable-list .list-item-header.expanded > .toggler-icon {
transform: rotate(90deg);
}
.expandable-list .list-item-header:not(.has-children) > .toggler-icon {
visibility: hidden;
}
/* Ensure toggler is visible for tech categories that will show specific tech items */
.expandable-list .tech-category-title.has-children > .toggler-icon {
visibility: visible;
}
.expandable-list .sg-title {
font-size: 1.2em; font-weight: bold; color: #FECC02; border-left-color: #FECC02;
}
.expandable-list .service-title {
font-size: 1.1em; color: #02C8FF; border-left-color: #02C8FF;
}
.expandable-list .component-title { /* Conceptual component/grouping */
font-size: 1.05em; color: #FFFFFF; border-left-color: #FFFFFF;
}
.expandable-list .tech-category-title { /* e.g., "SIEM/Log Management", "Automation Platforms" */
font-size: 1em; font-weight: bold; color: #E0E0E0; border-left-color: #E0E0E0;
}
.expandable-list .tech-item { /* Specific technology/tool/flow */
font-size: 0.9em;
color: #B0B0B0;
padding: 6px 10px 6px 15px;
margin-left: 15px;
border-left: 2px dotted rgba(255,255,255,0.3);
background-color: rgba(255,255,255,0.02);
border-radius: 0 4px 4px 0;
line-height: 1.5;
}
.expandable-list .tech-item strong { /* For the tech name itself */
color: #C8E6C9; /* Light green for emphasis */
}
.expandable-list .tech-item span { /* For the description part */
color: #A0B0C0;
}
</style>
</head>
<body>
<h1 class="page-main-title">ACME Example CDC Conceptual Technology Inventory</h1>
<div class="page-actions-bar">
<div class="navigation-container">
<a href="index.html" class="back-link">← Back to Strategy Overview</a>
</div>
<div class="global-controls">
<button id="expandAllTechArchBtn">Expand All</button>
<button id="collapseAllTechArchBtn">Collapse All</button>
</div>
</div>
<div class="content-area">
<h2>Guidance and Disclaimer</h2>
<p><strong><font size="2" color="#FECC02">Guidance:</strong></font><font size="2" color="#FFFFFF">
<br>This section of the interactive CDC Strategy tool provides an example CDC Technology Inventory, based on the services and components of the example CDC Service Catalogue.
<br>Attendees at the future CDC Strategy Workshop should familiarise themselves with the potential technologies, which may aid the understanding of the proposed CDC services and their components, and consider the equivalent technologies that are in use at ACME.
</font></p>
<p></p>
<p><strong><font size="2" color="#FECC02">Disclaimer:</strong></font><font size="2" color="#FFFFFF">
<ul>
<li>Example potential technologies have only been included for the first four service groups, and at a high-level for the remaining service groups.</li>
<li>The technologies provided are examples to aid ACME’s understanding of the development of the strategy. The full inventory of potential technologies and the high-level, conceptual technical architecture based on those technologies and their key integrations will be discussed and captured at the CDC Strategy Workshop.</li>
</ul>
</font></p>
</div>
<br>
<div class="content-area">
<h2>Inventory of Potential CDC Technologies</h2>
<p>This document outlines a high-level conceptual blueprint of the major systems, security tools, data flows, and key integrations that constitute the technical foundation for CDC operations and service delivery. Click items to expand.</p>
<ul class="expandable-list" id="techArchTree">
<!-- Tech Architecture structure will be injected here by JavaScript -->
</ul>
</div>
<script>
const techArchData = [
{
name: "SG001: CDC Services Management (Supporting Technologies)",
type: "sg",
services: [
{
name: "CDC Business Services Management",
type: "service",
components: [
{
name: "Strategy, Portfolio & Financial Management Systems",
type: "component",
techCategories: [
{
name: "Planning & Collaboration Platforms",
type: "tech-category",
items: [
{ name: "Project Management Software", description: " (e.g., Jira, Azure DevOps, Asana) for tracking strategic initiatives, service development, and CSI projects." },
{ name: "Document Management & Wiki", description: " (e.g., SharePoint, Confluence, Nextcloud) for strategic plans, policies, service documentation, and knowledge base." },
{ name: "Communication & Collaboration Suite", description: " (e.g., Microsoft Teams, Slack, Webex) for internal team coordination and stakeholder communication." }
]
},
{
name: "Financial & Reporting Systems",
type: "tech-category",
items: [
{ name: "Enterprise Resource Planning (ERP) Integration", description: " (e.g., SAP, Oracle Financials) for budgeting, expenditure tracking, and financial reporting alignment." },
{ name: "Business Intelligence (BI) Tools", description: " (e.g., Power BI, Tableau, Grafana) for generating service performance, operational health, and financial dashboards." },
{ name: "Survey & Feedback Tools", description: " (e.g., Microsoft Forms, SurveyMonkey) for consumer satisfaction and service feedback collection." }
]
}
]
}
]
},
{
name: "CDC IT Services Management (Internal IT Stack)",
type: "service",
components: [
{
name: "Core CDC Operational Platforms (Internal)",
type: "component",
techCategories: [
{
name: "IT Service Management (ITSM)",
type: "tech-category",
items: [
{ name: "ITSM Platform", description: " (e.g., ServiceNow, Jira Service Management, ManageEngine) for internal incident, problem, change, asset, and configuration management for CDC's own infrastructure." }
]
},
{
name: "Identity & Access Management (IAM)",
type: "tech-category",
items: [
{ name: "Central Directory Service", description: " (e.g., Active Directory, LDAP) for user authentication." },
{ name: "Privileged Access Management (PAM)", description: " Solution for securing and managing privileged accounts within the CDC infrastructure." },
{ name: "Multi-Factor Authentication (MFA)", description: " System for all CDC staff access to internal systems." }
]
},
{
name: "Endpoint Security & Management (Internal)",
type: "tech-category",
items: [
{ name: "Endpoint Protection Platform (EPP)", description: " For CDC workstations and servers." },
{ name: "Mobile Device Management (MDM)", description: " If applicable for CDC staff devices." }
]
},
{
name: "Network Infrastructure & Security (Internal)",
type: "tech-category",
items: [
{ name: "Firewalls, Routers, Switches", description: " For CDC's internal network segments." },
{ name: "VPN & Secure Remote Access", description: " For CDC staff." }
]
}
]
}
]
},
{
name: "CDC Operations Management (Supporting Tools)",
type: "service",
components: [
{
name: "Governance, Risk & Compliance (GRC) Systems",
type: "component",
techCategories: [
{
name: "GRC Platform / Tools",
type: "tech-category",
items: [
{ name: "GRC Software", description: " (Potentially integrated with ITSM/Doc Mgt) for tracking risks, compliance controls, audit evidence, and policy lifecycle." }
]
},
{
name: "Knowledge Management & Documentation",
type: "tech-category",
items: [
{ name: "Centralized Wiki / Document Repository", description: " (e.g., Confluence, SharePoint) for SOPs, policies, operational knowledge, and runbooks."}
]
}
]
}
]
},
{
name: "CDC Human Resource Management (Systems)",
type: "service",
components: [
{
name: "HR & Training Platforms",
type: "component",
techCategories: [
{
name: "HR Information System (HRIS) Integration",
type: "tech-category",
items: [ { name: "Link to Corporate HRIS", description: " For personnel data, recruitment, and performance management." } ]
},
{
name: "Learning Management System (LMS)",
type: "tech-category",
items: [ { name: "LMS Platform", description: " For delivering and tracking staff training and certifications." } ]
}
]
}
]
},
{
name: "CDC Vendor & SSP Management (Systems)",
type: "service",
components: [
{
name: "Contract & Vendor Management Tools",
type: "component",
techCategories: [
{
name: "Contract Lifecycle Management (CLM)",
type: "tech-category",
items: [ { name: "CLM System", description: " (Potentially corporate tool) for managing vendor contracts and SLAs." } ]
},
{
name: "Vendor Risk Management (VRM) Platform",
type: "tech-category",
items: [ { name: "VRM Tool", description: " For assessing and monitoring third-party vendor risks." } ]
}
]
}
]
}
]
},
{
name: "SG002: CDC Centre of Excellence and Innovation (CoEI)",
type: "sg",
services: [
{
name: "Cyber Range",
type: "service",
techCategories: [
{
name: "Virtualization & Orchestration",
type: "tech-category",
items: [
{ name: "Hypervisor Platforms", description: " (e.g., VMware vSphere, Proxmox VE, KVM) for creating and managing virtual machine environments." },
{ name: "Containerization Platforms", description: " (e.g., Docker, Kubernetes) for deploying containerized applications and services within scenarios." },
{ name: "Cyber Range Orchestration Software", description: " (e.g., Open-source options like CORD, commercial platforms) for automated scenario deployment, user management, and network configuration." }
]
},
{
name: "Simulation & Attack Tools",
type: "tech-category",
items: [
{ name: "Network Traffic Generators", description: " (e.g., Ostinato, TRex) to simulate realistic background and malicious network activity." },
{ name: "Attack Emulation Frameworks", description: " (e.g., Metasploit, Cobalt Strike (licensed), Caldera, Atomic Red Team) for simulating adversary TTPs." },
{ name: "Vulnerable Application Suites", description: " (e.g., OWASP WebGoat, DVWA) for web application security training." }
]
},
{
name: "Monitoring & Logging (Range Specific)",
type: "tech-category",
items: [
{ name: "Dedicated Log Aggregator/SIEM", description: " For capturing event logs within range scenarios for analysis and training." }
]
}
]
},
{
name: "Security for IT/OT/IoT/AI Development",
type: "service",
techCategories: [
{
name: "DevSecOps Toolchain",
type: "tech-category",
items: [
{ name: "Static Application Security Testing (SAST)", description: " Tools integrated into CI/CD pipelines (e.g., SonarQube, Checkmarx)." },
{ name: "Dynamic Application Security Testing (DAST)", description: " Tools for testing running applications (e.g., OWASP ZAP, Burp Suite Pro)." },
{ name: "Software Composition Analysis (SCA)", description: " Tools for identifying vulnerabilities in open-source components (e.g., OWASP Dependency-Check, Snyk)." },
{ name: "Infrastructure as Code (IaC) Security Scanners", description: " (e.g., tfsec, Checkov) for securing cloud configurations." }
]
},
{
name: "Specialized Testing Environments",
type: "tech-category",
items: [
{ name: "OT/ICS Testbeds", description: " Physical or virtualized environments for testing security of industrial control systems." },
{ name: "IoT Device Emulators/Test Harnesses", description: " For security testing of IoT firmware and communication protocols." },
{ name: "AI Model Robustness Testing Tools", description: " For assessing adversarial attacks against ML models." }
]
}
]
},
{
name: "CDC Automation, AI & Data Management",
type: "service",
techCategories: [
{
name: "Automation & Orchestration Platforms",
type: "tech-category",
items: [
{ name: "SOAR Platform", description: " (e.g., Splunk SOAR, Palo Alto XSOAR, Swimlane) for automating incident response playbooks and SOC workflows." },
{ name: "Scripting Languages", description: " (e.g., Python, PowerShell) for custom automation tasks and tool integration." }
]
},
{
name: "AI/ML Development & Deployment",
type: "tech-category",
items: [
{ name: "Machine Learning Frameworks", description: " (e.g., TensorFlow, PyTorch, Keras, scikit-learn) for building custom security models." },
{ name: "Data Processing & Analytics Platforms", description: " (e.g., Apache Spark, Elasticsearch) for handling large security datasets for ML training and inference." },
{ name: "Model Deployment & Management Tools", description: " (e.g., Kubeflow, MLflow) for operationalizing ML models." }
]
},
{
name: "Data Management & Storage (for Analytics)",
type: "tech-category",
items: [
{ name: "Data Lakes / Warehouses", description: " (e.g., Hadoop HDFS, AWS S3, Snowflake) for storing and accessing large volumes of security telemetry." }
]
}
]
}
// Post-Quantum and Collaboration services might leverage existing communication/research platforms initially.
]
},
{
name: "SG003: CDC Managed Services Development",
type: "sg",
services: [
{
name: "Managed Services Architecture Design",
type: "service",
techCategories: [
{
name: "Design & Modeling Tools",
type: "tech-category",
items: [
{ name: "Architecture Modeling Software", description: " (e.g., ArchiMate tools, Lucidchart, Visio) for creating service blueprints and technical diagrams." },
{ name: "Threat Modeling Tools", description: " (e.g., OWASP Threat Dragon, Microsoft Threat Modeling Tool) for identifying potential threats in service designs." }
]
},
{
name: "Prototyping & Simulation Environments",
type: "tech-category",
items: [
{ name: "Cloud Sandboxes / Dev Environments", description: " (e.g., AWS, Azure, GCP) for rapid prototyping of service components." }
]
}
]
},
{
name: "Managed Services Engineering",
type: "service",
techCategories: [
{
name: "Multi-Tenant Security Platforms",
type: "tech-category",
items: [
{ name: "Multi-Tenant SIEM/Log Management", description: " Solutions capable of segregating client data and providing dedicated views." },
{ name: "Multi-Tenant EDR/XDR Platforms", description: " For managed endpoint/extended detection and response services." },
{ name: "Cloud Security Posture Management (CSPM)", description: " Tools if offering managed cloud security." }
]
},
{
name: "Integration & API Management",
type: "tech-category",
items: [
{ name: "API Gateways & Integration Platforms", description: " For connecting various security tools and client environments securely." }
]
},
{
name: "Deployment & Configuration Management",
type: "tech-category",
items: [
{ name: "Infrastructure as Code (IaC)", description: " (e.g., Terraform, Ansible) for repeatable deployment of MSS infrastructure." }
]
}
]
},
{
name: "Managed Services Process Management",
type: "service",
techCategories: [
{
name: "Workflow & BPM Tools",
type: "tech-category",
items: [
{ name: "Business Process Management (BPM) Software", description: " For designing, documenting, and optimizing MSS operational workflows." },
{ name: "Documentation Platforms", description: " (Shared with SG001 - e.g., Confluence, SharePoint) for SOPs, runbooks, client onboarding guides." }
]
}
]
}
]
},
{
name: "SG004: CDC Managed Services Management & Delivery",
type: "sg",
services: [
{
name: "Policy & Framework Management (MSS Delivery)",
type: "service",
techCategories: [
{
name: "Document & Policy Management Systems",
type: "tech-category",
items: [
{ name: "Centralized Repository", description: " (Shared with SG001) for MSS-specific operational policies, client agreements, and compliance documentation." }
]
}
]
},
{
name: "Security Architecture Design Management (Client Solutions)",
type: "service",
techCategories: [
{
name: "Client Environment Assessment Tools",
type: "tech-category",
items: [
{ name: "Network Scanners & Discovery Tools", description: " For understanding client environments during onboarding." },
{ name: "Configuration Auditing Tools", description: " For assessing client security posture against baselines." }
]
}
]
},
{
name: "Risk Management (Client-Focused)",
type: "service",
techCategories: [
{
name: "Client Risk Assessment Tools",
type: "tech-category",
items: [
{ name: "GRC or Risk Management Modules", description: " (Potentially within ITSM or dedicated GRC) for tracking client-specific risks." }
]
}
]
},
{
name: "Personnel Services Management (MSS Delivery Teams)",
type: "service",
techCategories: [
{
name: "Training & Knowledge Platforms",
type: "tech-category",
items: [
{ name: "LMS for MSS Staff", description: " (Shared with SG001) for MSS-specific training modules and certifications." },
{ name: "Internal Wiki/KB for MSS Teams", description: " For client-specific procedures and troubleshooting guides." }
]
}
]
},
{
name: "Business Continuity and Disaster Recovery Management (for MSS)",
type: "service",
techCategories: [
{
name: "BCDR Planning & Testing Tools",
type: "tech-category",
items: [
{ name: "Backup & Recovery Solutions", description: " For critical MSS delivery platforms." },
{ name: "Communication Systems for DR", description: " Redundant communication channels." }
]
}
]
},
{
name: "Core MSS Delivery Platforms (Client-Facing)",
type: "service", // This represents the actual tech used to deliver to clients
techCategories: [
{
name: "Client Portal & Reporting",
type: "tech-category",
items: [
{ name: "Secure Client Portal", description: " For clients to view dashboards, reports, manage tickets, and access service information." },
{ name: "Automated Reporting Engine", description: " For generating scheduled and ad-hoc client reports." }
]
},
{
name: "Ticketing System (Client-Facing)",
type: "tech-category",
items: [
{ name: "ITSM/Helpdesk with Client Access", description: " For logging and tracking client incidents and service requests related to MSS." }
]
},
{
name: "Secure Communication Channels",
type: "tech-category",
items: [
{ name: "Encrypted Email, Secure File Share", description: " For sensitive communications with clients." }
]
}
]
}
]
},
{
name: "SG005: CDC National Cyber Threat Information Sharing & Analysis Management",
type: "sg",
services: [
{
name: "National Cyber Threat Info Sharing & Analysis Service",
type: "service",
components: [ // Using components to group related tech categories
{
name: "Intelligence Ingestion & Processing Platforms",
type: "component",
techCategories: [
{
name: "Threat Intelligence Platforms (TIP)",
type: "tech-category",
items: [
{ name: "TIP System", description: " To be discussed in workshop" }
]
},
{
name: "Data Feeds & Connectors",
type: "tech-category",
items: [
{ name: "Integration Interfaces", description: " To be discussed in workshop" }
]
}
]
},
{
name: "Analytical & Collaboration Tools",
type: "component",
techCategories: [
{
name: "Analytical Workbenches",
type: "tech-category",
items: [
{ name: "Data Analysis Tools", description: " To be discussed in workshop" }
]
},
{
name: "Secure Collaboration Platforms",
type: "tech-category",
items: [
{ name: "Information Sharing Portals", description: " To be discussed in workshop" }
]
}
]
},
{
name: "Dissemination & Reporting Systems",
type: "component",
techCategories: [
{
name: "Alerting & Notification Systems",
type: "tech-category",
items: [
{ name: "Automated Alerting Mechanisms", description: " To be discussed in workshop" }
]
},
{
name: "Reporting & Visualization Tools",
type: "tech-category",
items: [
{ name: "Intelligence Reporting Software", description: " To be discussed in workshop" }
]
}
]
}
]
}
]
}, // End of SG005, comma if more SGs follow
{
name: "SG006: CDC Critical Asset Management",
type: "sg",
services: [
{
name: "CDC Critical Asset Visibility Assurance Service",
type: "service",
techCategories: [ // Direct tech categories if no strong component distinction for tech
{
name: "Asset Discovery & Inventory Systems",
type: "tech-category",
items: [
{ name: "Network Discovery Tools", description: " To be discussed in workshop" },
{ name: "CMDB Integration", description: " To be discussed in workshop" },
{ name: "OT/ICS Asset Identification Tools", description: " To be discussed in workshop" }
]
},
{
name: "Security Telemetry & Integration Platforms",
type: "tech-category",
items: [
{ name: "Log Collectors & Agents for Critical Assets", description: " To be discussed in workshop" },
{ name: "API Connectors for Specialized Systems", description: " To be discussed in workshop" }
]
},
{
name: "Configuration & Hardening Management Tools",
type: "tech-category",
items: [
{ name: "Configuration Management Database (CMDB)", description: " To be discussed in workshop" },
{ name: "Policy Compliance Scanners", description: " To be discussed in workshop" }
]
}
]
},
{
name: "CDC Critical Asset Assessment Service",
type: "service",
techCategories: [
{
name: "Vulnerability Assessment & Scanning Tools",
type: "tech-category",
items: [
{ name: "Network Vulnerability Scanners", description: " To be discussed in workshop" },
{ name: "Application Security Testing (AST) Tools", description: " To be discussed in workshop" },
{ name: "OT/ICS Specific Assessment Tools", description: " To be discussed in workshop" }
]
},
{
name: "Penetration Testing & Adversary Emulation Platforms",
type: "tech-category",
items: [
{ name: "Penetration Testing Toolkits", description: " To be discussed in workshop" },
{ name: "Breach and Attack Simulation (BAS) Platforms", description: " To be discussed in workshop" }
]
},
{
name: "Threat Modeling Software",
type: "tech-category",
items: [
{ name: "Threat Modeling Tools/Frameworks", description: " To be discussed in workshop" }
]
}
]
}
]
}, // End of SG006, comma if more SGs follow
{
name: "SG007: CDC Detection Engineering and Response Management",
type: "sg",
services: [
{
name: "Detection & Response Content Management Systems",
type: "service",
techCategories: [
{
name: "Version Control Systems",
type: "tech-category",
items: [
{ name: "Git Repository (e.g., GitLab, GitHub)", description: " To be discussed in workshop" }
]
},
{
name: "Content Distribution & Management Tools",
type: "tech-category",
items: [
{ name: "CI/CD Pipelines for Detection Code", description: " To be discussed in workshop" },
{ name: "Detection Catalog/Rule Management System", description: " To be discussed in workshop" }
]
}
]
}
]
}, // End of SG007, comma if SG008 follows
{
name: "SG008: CDC Critical Incident Response Collaboration & Coordination",
type: "sg",
services: [
{
name: "CDC Forensics & Deep Analysis Platforms",
type: "service",
techCategories: [
{
name: "Digital Forensics Workstations & Toolkits",
type: "tech-category",
items: [
{ name: "Forensic Imaging Tools", description: " To be discussed in workshop" },
{ name: "Memory Analysis Tools", description: " To be discussed in workshop" },
{ name: "Disk Forensics Software", description: " To be discussed in workshop" },
{ name: "Network Forensics Tools", description: " To be discussed in workshop" }
]
},
{
name: "Malware Analysis Environment (Sandboxing)",
type: "tech-category",
items: [
{ name: "Isolated Sandbox Solutions", description: " To be discussed in workshop" },
{ name: "Reverse Engineering Tools", description: " To be discussed in workshop" }
]
},
{
name: "Secure Evidence Storage",
type: "tech-category",
items: [
{ name: "Write-Protected Storage Systems", description: " To be discussed in workshop" },
{ name: "Chain of Custody Tracking System", description: " To be discussed in workshop" }
]
}
]
},
{
name: "Incident Collaboration & Communication Platforms",
type: "service",
techCategories: [
{
name: "Case Management / Incident Tracking System",
type: "tech-category",
items: [
{ name: "ITSM/SOAR or Dedicated Case Management", description: " To be discussed in workshop" }
]
},
{
name: "Secure Communication Channels (War Rooms)",
type: "tech-category",
items: [
{ name: "Encrypted Conferencing & Chat", description: " To be discussed in workshop" },
{ name: "Secure Document Sharing for IR", description: " To be discussed in workshop" }
]
}
]
}
]
},
{
name: "SG009: To be discussed in workshop", // Service Group Name
type: "sg",
services: [
{
name: " To be discussed in workshop", // Service Name
type: "service",
components: [
{
name: " To be discussed in workshop", // Component Name
type: "component",
techCategories: [
{
name: " To be discussed in workshop", // Tech Category Name
type: "tech-category",
items: [
{ name: " To be discussed in workshop", description: " To be discussed in workshop" },
{ name: " To be discussed in workshop", description: " To be discussed in workshop" }
]
},
{
name: " To be discussed in workshop", // Another Tech Category
type: "tech-category",
items: [
{ name: " To be discussed in workshop", description: " To be discussed in workshop" }
]
}
]
},
{
name: " To be discussed in workshop", // Another Component Name
type: "component",
techCategories: [
{
name: " To be discussed in workshop", // Tech Category Name
type: "tech-category",
items: [
{ name: " To be discussed in workshop", description: " To be discussed in workshop" }
]
}
]
}
]
},
{
name: " To be discussed in workshop", // Another Service Name
type: "service",
techCategories: [ // Tech categories directly under service if no further components
{
name: " To be discussed in workshop",
type: "tech-category",
items: [
{ name: " To be discussed in workshop", description: " To be discussed in workshop" },
{ name: " To be discussed in workshop", description: " To be discussed in workshop" }
]
}
]
}
]
}
];
function createTechArchListItem(item) {
const li = document.createElement('li');
const header = document.createElement('div');
header.classList.add('list-item-header');
if (item.type) {
// Apply specific class for styling based on item type
if (item.type === 'tech-category') {
header.classList.add('tech-category-title');
} else {
header.classList.add(item.type + '-title');
}
}
const toggler = document.createElement('span');
toggler.classList.add('toggler-icon');
toggler.innerHTML = '►';
header.appendChild(toggler);
const title = document.createElement('span');
title.textContent = item.name;
header.appendChild(title);
li.appendChild(header);
let childrenUl = null;
let hasExpandableChildren = false;
// Determine if there are children to expand
if (item.services || item.components || item.techCategories || item.items) {
hasExpandableChildren = true;
header.classList.add('has-children');
childrenUl = document.createElement('ul');
childrenUl.classList.add('expandable-list');
if (item.services) {
item.services.forEach(service => childrenUl.appendChild(createTechArchListItem(service)));
} else if (item.components) {
item.components.forEach(component => childrenUl.appendChild(createTechArchListItem(component)));
} else if (item.techCategories) {
item.techCategories.forEach(category => childrenUl.appendChild(createTechArchListItem(category)));
} else if (item.items) { // Leaf nodes - specific technologies/tools
item.items.forEach(tech => {
const techLi = document.createElement('li');
techLi.classList.add('tech-item');
// Tech item itself is not expandable, so no header/toggler
const techNameStrong = document.createElement('strong');
techNameStrong.textContent = tech.name;
techLi.appendChild(techNameStrong);
if (tech.description) {
const techDescSpan = document.createElement('span');
techDescSpan.textContent = tech.description;
techLi.appendChild(techDescSpan);
}
childrenUl.appendChild(techLi);
});
}
li.appendChild(childrenUl);
} else {
toggler.style.visibility = 'hidden';
}
header.addEventListener('click', () => {
if (childrenUl && hasExpandableChildren) {
const isExpanded = childrenUl.style.display === 'block';
childrenUl.style.display = isExpanded ? 'none' : 'block';
header.classList.toggle('expanded', !isExpanded);
}
});
return li;
}
const techArchTreeContainer = document.getElementById('techArchTree');
if (techArchTreeContainer) {
techArchData.forEach(sg => {
techArchTreeContainer.appendChild(createTechArchListItem(sg));
});
}
// Global Expand/Collapse for Tech Arch List
const expandAllBtn = document.getElementById('expandAllTechArchBtn');
const collapseAllBtn = document.getElementById('collapseAllTechArchBtn');
function toggleAllTechArch(expand) {
techArchTreeContainer.querySelectorAll('.list-item-header.has-children').forEach(header => {
const childrenUl = header.nextElementSibling;
if (childrenUl && childrenUl.tagName === 'UL') {
childrenUl.style.display = expand ? 'block' : 'none';