senaduka/old-riskletpy
1
0
Fork 0
Code Issues 5 Pull Requests 1 Actions Packages Projects Releases Wiki Activity

Merge branch 'crown-jewels' into 'master'

Browse Source 
Removed data sensitivity question

See merge request kbr4/riskletpy!61
This commit was merged in pull request #110.
This commit is contained in:
amir sabani
2025-09-19 09:36:56 +00:00
parent 0346a81626 d27d7b60c7
commit 98f5801bad
4 changed files with 37 additions and 57 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
backend/core/forms.py
View File

@@ -6,7 +6,7 @@ class OrganizationForm(forms.ModelForm):
model = Organization
fields = [
'name', 'email', 'employee_headcount', 'annual_revenue', 'critical_applications',
'compliance_frameworks', 'industry_sector', 'it_dependency', 'data_sensitivity',
'compliance_frameworks', 'industry_sector', 'it_dependency',
'network_infrastructure', 'remote_workforce_percentage', 'third_party_vendor_access',
'internal_software_development', 'geographic_scope', 'customer_base', 'customer_type',
'product_portfolio', 'supplier_base', 'it_infrastructure',

22
backend/core/migrations/0027_remove_organization_data_sensitivity_and_more.py Normal file
View File

@@ -0,0 +1,22 @@
# Generated by Django 5.1.3 on 2025-09-19 09:32
from django.db import migrations, models
class Migration(migrations.Migration):
dependencies = [
('core', '0026_remove_organization_intellectual_property_and_more'),
]
operations = [
migrations.RemoveField(
model_name='organization',
name='data_sensitivity',
),
migrations.AlterField(
model_name='organization',
name='sensitive_data_types',
field=models.JSONField(blank=True, help_text="Stores applicable status and business impact rating (1-5) for each sensitive data type. Example: {'personal': {'applicable': True, 'impact': 4}, ...}", null=True),
),
]

1
backend/core/models.py
View File

@@ -52,7 +52,6 @@ class Organization(models.Model):
compliance_frameworks = models.JSONField(help_text="Which regulatory frameworks is your organization required to comply with?") # Stores selected compliance frameworks as a list
industry_sector = models.CharField(max_length=255,help_text="What is your primary industry sector?")
it_dependency = models.CharField(max_length=255, help_text="On a scale from 1-10, how dependent is your business operations on technology?")
data_sensitivity = models.CharField(max_length=20, help_text="Overall Sensitivity Level of Data Processed: Subjective rating of the value and impact of the data your organization processes.")
remote_workforce_percentage = models.CharField(max_length=20, help_text="What percentage of your workforce operates remotely?")
third_party_vendor_access = models.CharField(max_length=20, help_text="How many third-party vendors have access to your systems?")
internal_software_development = models.CharField(max_length=20, help_text="What is the extent of your internal software development activities?")

69
backend/core/templates/signup.html
View File

@@ -606,49 +606,8 @@
</small>
</div>
<!-- Overall Sensitivity Level of Data Processed -->
<div class="mb-3 question basic-section" id="q8">
<label class="form-label mt-3">
Overall Sensitivity Level of Data Processed:
<br>
<small class="form-text text-muted">
Select one - Subjective rating of value/impact
</small>
</label>
<hr>
<div class="pb-3">
<div class="form-check">
<input class="form-check-input" type="radio" name="data_sensitivity" id="sensitivity-low" value="low" required>
<label class="form-check-label" for="sensitivity-low">
<i class="fa-solid fa-unlock"></i> Low (Primarily public or non-sensitive internal data)
</label>
</div>
<div class="form-check">
<input class="form-check-input" type="radio" name="data_sensitivity" id="sensitivity-medium" value="medium">
<label class="form-check-label" for="sensitivity-medium">
<i class="fa-solid fa-lock-open"></i> Medium (Some confidential business data, basic PII)
</label>
</div>
<div class="form-check">
<input class="form-check-input" type="radio" name="data_sensitivity" id="sensitivity-high" value="high">
<label class="form-check-label" for="sensitivity-high">
<i class="fa-solid fa-lock"></i> High (Significant PII/PHI, Financial Data, Critical IP)
</label>
</div>
<div class="form-check">
<input class="form-check-input" type="radio" name="data_sensitivity" id="sensitivity-very-high" value="very-high">
<label class="form-check-label" for="sensitivity-very-high">
<i class="fa-solid fa-vault"></i> Very High (Large volumes of highly sensitive data, regulated data, "crown jewel" IP)
</label>
</div>
</div>
<small class="form-text text-muted py-3">
Subjective rating of the value and impact of the data your organization processes.
</small>
</div>
<!-- Remote Workforce Percentage -->
<div class="mb-3 question basic-section" id="q9">
<div class="mb-3 question basic-section" id="q8">
<label class="form-label mt-3">What percentage of your workforce operates remotely?</label>
<hr>
<div class="pb-3">
@@ -682,7 +641,7 @@
</div>
<!-- Third-Party Vendor Access -->
<div class="mb-3 question basic-section" id="q10">
<div class="mb-3 question basic-section" id="q9">
<label class="form-label mt-3">How many third-party vendors have access to your systems?</label>
<hr>
<div class="pb-3">
@@ -716,7 +675,7 @@
</div>
<!-- Internal Software Development -->
<div class="mb-3 question basic-section" id="q11">
<div class="mb-3 question basic-section" id="q10">
<label class="form-label mt-3">
Internal Software Development for Critical Applications:
<br>
@@ -744,7 +703,7 @@
</div>
<!-- IT Infrastructure Model -->
<div class="mb-3 question basic-section" id="q12">
<div class="mb-3 question basic-section" id="q11">
<label class="form-label mt-3">What is your primary IT infrastructure model?</label>
<hr>
<div class="pb-3">
@@ -784,7 +743,7 @@
<!-- Network Infrastructure Model -->
<div class="mb-3 question basic-section" id="q13">
<div class="mb-3 question basic-section" id="q12">
<label class="form-label mt-3">
Network Infrastructure Model:
<br>
@@ -831,7 +790,7 @@
</div>
<!-- Geographic Operational Scope -->
<div class="mb-3 question basic-section" id="q14">
<div class="mb-3 question basic-section" id="q13">
<label class="form-label mt-3">
Geographic Operational Scope:
<br>
@@ -871,7 +830,7 @@
</div>
<!--Customer Base Distribution -->
<div class="mb-3 question basic-section" id="q15">
<div class="mb-3 question basic-section" id="q14">
<label class="form-label mt-3">
Customer Base Distribution:
<br>
@@ -905,7 +864,7 @@
<!-- Primary Customer Type -->
<div class="mb-3 question basic-section" id="q16">
<div class="mb-3 question basic-section" id="q15">
<label class="form-label mt-3">
Primary Customer Type:
<br>
@@ -951,7 +910,7 @@
<!-- Product/Service Portfolio -->
<div class="mb-3 question basic-section" id="q17">
<div class="mb-3 question basic-section" id="q16">
<label class="form-label mt-3">
Product/Service Portfolio Diversity:
<br>
@@ -985,7 +944,7 @@
</div>
<!-- Supplier Base Structure -->
<div class="mb-3 question basic-section" id="q18">
<div class="mb-3 question basic-section" id="q17">
<label class="form-label mt-3">
Dependency on Critical Suppliers:
<br>
@@ -1018,7 +977,7 @@
</div>
<!-- Critical Business Systems -->
<div class="mb-3 question basic-section" id="q19">
<div class="mb-3 question basic-section" id="q18">
<label class="form-label mt-3">
Integration of Critical Business Systems:
<br>
@@ -1057,7 +1016,7 @@
</div>
<!-- Rate of Technology / Business Change -->
<div class="mb-3 question basic-section" id="q20">
<div class="mb-3 question basic-section" id="q19">
<label class="form-label mt-3">
Rate of Technology / Business Change:
<br>
@@ -1092,7 +1051,7 @@
</div>
<!-- Relevant Threat Actors -->
<div class="mb-3 question basic-section" id="q21">
<div class="mb-3 question basic-section" id="q20">
<label class="form-label mt-3">
Relevant Threat Actors:
<br>
@@ -1145,7 +1104,7 @@
</div>
<!-- Expert Analysis -->
<div class="mb-3 question basic-section" id="q22">
<div class="mb-3 question basic-section" id="q21">
<label class="form-label mt-3">
Do u want to perform an expert analysis of your cybersecurity posture?
<br>