'GAP-001',
'regulation' => 'NIS2',
'description' => 'Multi-factor authentication (MFA) is not enforced for all administrative accounts.',
'severity' => 'High',
'recommendation' => 'Enable MFA for all privileged users immediately.',
'status' => 'Open'
],
[
'id' => 'GAP-002',
'regulation' => 'DORA',
'description' => 'The disaster recovery plan has not been tested in the last 12 months.',
'severity' => 'High',
'recommendation' => 'Schedule and conduct a full disaster recovery test.',
'status' => 'Open'
],
[
'id' => 'GAP-003',
'regulation' => 'ISO27001',
'description' => 'Vulnerability scanning is not performed on a regular, automated basis.',
'severity' => 'Medium',
'recommendation' => 'Implement a weekly automated vulnerability scanning solution.',
'status' => 'In Progress'
],
[
'id' => 'GAP-004',
'regulation' => 'NIS2',
'description' => 'Employee security awareness training records for the current year are incomplete.',
'severity' => 'Low',
'recommendation' => 'Ensure all employees complete the annual security training and track completion.',
'status' => 'Open'
],
[
'id' => 'GAP-005',
'regulation' => 'DORA',
'description' => 'The firewall rule set has not been reviewed in over 90 days.',
'severity' => 'Medium',
'recommendation' => 'Perform a quarterly review of all firewall rules.',
'status' => 'Resolved'
]
];
// Mock compliance data for donut charts
$compliance_data = [
'NIS2' => 85,
'DORA' => 60,
'ISO27001' => 95
];
function get_severity_badge($severity) {
switch (strtolower($severity)) {
case 'high':
return 'bg-danger';
case 'medium':
return 'bg-warning text-dark';
case 'low':
return 'bg-info text-dark';
default:
return 'bg-secondary';
}
}
function get_status_badge($status) {
switch (strtolower($status)) {
case 'open':
return 'bg-danger';
case 'in progress':
return 'bg-warning text-dark';
case 'resolved':
return 'bg-success';
default:
return 'bg-secondary';
}
}
?>
Vision Tool Demo - ComplianceOS
Vision Tool Demo
An overview of your organization's compliance posture across key regulations.