Availability controls are designed to ensure that websites, applications, and systems stay available to authorized users. If a hacker attacks a part of the IT infrastructure or a hardware component fails, availability controls help the organization continue normal operations. Some different types of availability controls are system availability controls, data availability controls, and website availability controls.
Availability failures can occur from a number of causes, such as malicious attackers attempting to bring down a website (e.g., the DDoS attack); or hardware failures such as hard drive or power supply failures; or errors in code that can bring down an application. They can also include utilities such as power outages that disrupt systems and networks.
Effective backup strategies are an important part of availability control programs to protect against these kinds of disruptions.