{{define "content"}}
<div class="container">
    <div class="row">
        <div class="col">
            <h1 class="pt-4 mt-5 mb-4">Advanced Risk Assessment</h1>
            <hr>
            <form method="post">
                <!-- Geographic Operational Scope -->
                <div class="mb-3 question" id="q1">
                    <label for="geo-scope" class="form-label mt-3">What is your organization's geographic operational scope?</label>
                    <hr>
                    <select class="form-select" id="geo-scope" name="GeoScope" required>
                        <option value="single-country">Single country</option>
                        <option value="single-region">Multiple countries - Single region</option>
                        <option value="multiple-regions">Multiple countries - Multiple regions</option>
                        <option value="global">Global operations</option>
                    </select>
                    <small class="form-text text-muted py-3">Determines exposure to different cybersecurity regulations.</small>
                </div>

                <!-- Customer Base Distribution -->
                <div class="mb-3 question" id="q2">
                    <label for="customer-base" class="form-label mt-3">How would you characterize your customer base distribution?</label>
                    <hr>
                    <select class="form-select" id="customer-base" name="CustomerBase" required>
                        <option value="few-key">Few key clients (1-5)</option>
                        <option value="moderate">Moderate concentration (6-20)</option>
                        <option value="diverse">Diverse customer base (20+)</option>
                    </select>
                    <small class="form-text text-muted py-3">Assesses potential impact of data breaches.</small>
                </div>

                <!-- Primary Customer Type -->
                <div class="mb-3 question" id="q3">
                    <label for="customer-type" class="form-label mt-3">What is your primary customer type?</label>
                    <hr>
                    <select class="form-select" id="customer-type" name="CustomerType" required>
                        <option value="b2b">Primarily B2B</option>
                        <option value="b2c">Primarily B2C</option>
                        <option value="mixed">Mixed B2B/B2C</option>
                    </select>
                    <small class="form-text text-muted py-3">Defines data protection requirements.</small>
                </div>

                <!-- Product/Service Portfolio -->
                <div class="mb-3 question" id="q4">
                    <label for="product-portfolio" class="form-label mt-3">How diversified is your product/service portfolio?</label>
                    <hr>
                    <select class="form-select" id="product-portfolio" name="ProductPortfolio" required>
                        <option value="single">Single product/service</option>
                        <option value="2-5">2-5 products/services</option>
                        <option value="more-than-5">More than 5 products/services</option>
                    </select>
                    <small class="form-text text-muted py-3">Indicates the variety of systems requiring protection.</small>
                </div>

                <!-- Supplier Base Structure -->
                <div class="mb-3 question" id="q5">
                    <label for="supplier-base" class="form-label mt-3">What is your supplier base structure?</label>
                    <hr>
                    <select class="form-select" id="supplier-base" name="SupplierBase" required>
                        <option value="single-critical">Single/few critical suppliers</option>
                        <option value="moderate">Moderate supplier base</option>
                        <option value="highly-diverse">Highly diverse supplier base</option>
                    </select>
                    <small class="form-text text-muted py-3">Assesses third-party cybersecurity risks.</small>
                </div>

                <!-- IT Infrastructure Model -->
                <div class="mb-3 question" id="q6">
                    <label class="form-label mt-3">What is your primary IT infrastructure model?</label>
                    <hr>
                    <div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-on-prem" value="on-premises">
                            <label class="form-check-label" for="it-on-prem">On-premises systems</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-cloud" value="cloud-based">
                            <label class="form-check-label" for="it-cloud">Cloud-based systems</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-hybrid" value="hybrid">
                            <label class="form-check-label" for="it-hybrid">Hybrid infrastructure</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-legacy" value="legacy">
                            <label class="form-check-label" for="it-legacy">Legacy systems</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-modern" value="modern">
                            <label class="form-check-label" for="it-modern">Modern architecture</label>
                        </div>
                    </div>
                    <small class="form-text text-muted py-3">Determines specific cybersecurity controls.</small>
                </div>

                <!-- Intellectual Property Protection -->
                <div class="mb-3 question" id="q7">
                    <label class="form-label mt-3">How does your organization protect and manage intellectual property?</label>
                    <hr>
                    <div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="IPProtection" id="ip-patents" value="patents">
                            <label class="form-check-label" for="ip-patents">Patents owned</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="IPProtection" id="ip-licensed" value="licensed-ip">
                            <label class="form-check-label" for="ip-licensed">Licensed IP from others</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="IPProtection" id="ip-trade-secrets" value="trade-secrets">
                            <label class="form-check-label" for="ip-trade-secrets">Trade secrets</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="IPProtection" id="ip-joint" value="joint-ip">
                            <label class="form-check-label" for="ip-joint">Joint IP ownership</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="IPProtection" id="ip-none" value="no-ip">
                            <label class="form-check-label" for="ip-none">No significant IP</label>
                        </div>
                    </div>
                    <small class="form-text text-muted py-3">Evaluates cybersecurity needs based on IP ownership.</small>
                </div>

                <!-- Sensitive Data -->
                <div class="mb-3 question" id="q8">
                    <label class="form-label mt-3">What type of sensitive data does your organization handle?</label>
                    <hr>
                    <div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-personal" value="personal">
                            <label class="form-check-label" for="data-personal">Personal customer data</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-financial" value="financial">
                            <label class="form-check-label" for="data-financial">Financial records</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-healthcare" value="healthcare">
                            <label class="form-check-label" for="data-healthcare">Healthcare information</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-ip" value="ip">
                            <label class="form-check-label" for="data-ip">Intellectual property</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-gov" value="government">
                            <label class="form-check-label" for="data-gov">Government data</label>
                        </div>
                        <div class="form-check">
                            <input class="form-check-input" type="checkbox" name="SensitiveData" id="data-payment" value="payment">
                            <label class="form-check-label" for="data-payment">Payment card data</label>
                        </div>
                    </div>
                    <small class="form-text text-muted py-3">Identifies required compliance frameworks.</small>
                </div>

                <!-- Critical Business Systems -->
                <div class="mb-3 question" id="q9">
                    <label for="integration-level" class="form-label mt-3">How integrated are your critical business systems?</label>
                    <hr>
                    <select class="form-select" id="integration-level" name="IntegrationLevel" required>
                        <option value="fully-integrated">Fully integrated</option>
                        <option value="partially-integrated">Partially integrated</option>
                        <option value="mostly-separate">Mostly separate</option>
                        <option value="completely-isolated">Completely isolated</option>
                    </select>
                    <small class="form-text text-muted py-3">Evaluates potential for cascade failures.</small>
                </div>

                <!-- Remote Work Policy -->
                <div class="mb-3 question" id="q10">
                    <label for="remote-policy" class="form-label mt-3">What is your organization's remote work policy?</label>
                    <hr>
                    <select class="form-select" id="remote-policy" name="RemotePolicy" required>
                        <option value="no-remote">No remote work allowed</option>
                        <option value="limited-remote">Limited remote work options</option>
                        <option value="hybrid">Hybrid work model</option>
                        <option value="fully-remote">Fully remote operations available</option>
                    </select>
                    <small class="form-text text-muted py-3">Determines the scope of remote access security requirements.</small>
                </div>

                <div class="d-flex justify-content-end mt-4">
                    <button type="button" class="btn btn-lg btn-outline-secondary me-3" id="back">Back</button>
                    <button type="submit" class="btn btn-primary btn-lg" id="submit">Next</button>
                </div>
            </form>
        </div>
    </div>
</div>
{{end}}

{{define "bottom"}}
<script src="/static/js/formHandling.js"></script>
{{end}}