199 lines
12 KiB
HTML
199 lines
12 KiB
HTML
{{define "content"}}
|
|
<div class="container">
|
|
<div class="row">
|
|
<div class="col">
|
|
<h1 class="pt-4 mt-5 mb-4">Advanced Risk Assessment</h1>
|
|
<hr>
|
|
<form method="post">
|
|
<!-- Geographic Operational Scope -->
|
|
<div class="mb-3 question" id="q1">
|
|
<label for="geo-scope" class="form-label mt-3">What is your organization's geographic operational scope?</label>
|
|
<hr>
|
|
<select class="form-select" id="geo-scope" name="GeoScope" required>
|
|
<option value="single-country">Single country</option>
|
|
<option value="single-region">Multiple countries - Single region</option>
|
|
<option value="multiple-regions">Multiple countries - Multiple regions</option>
|
|
<option value="global">Global operations</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Determines exposure to different cybersecurity regulations.</small>
|
|
</div>
|
|
|
|
<!-- Customer Base Distribution -->
|
|
<div class="mb-3 question" id="q2">
|
|
<label for="customer-base" class="form-label mt-3">How would you characterize your customer base distribution?</label>
|
|
<hr>
|
|
<select class="form-select" id="customer-base" name="CustomerBase" required>
|
|
<option value="few-key">Few key clients (1-5)</option>
|
|
<option value="moderate">Moderate concentration (6-20)</option>
|
|
<option value="diverse">Diverse customer base (20+)</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Assesses potential impact of data breaches.</small>
|
|
</div>
|
|
|
|
<!-- Primary Customer Type -->
|
|
<div class="mb-3 question" id="q3">
|
|
<label for="customer-type" class="form-label mt-3">What is your primary customer type?</label>
|
|
<hr>
|
|
<select class="form-select" id="customer-type" name="CustomerType" required>
|
|
<option value="b2b">Primarily B2B</option>
|
|
<option value="b2c">Primarily B2C</option>
|
|
<option value="mixed">Mixed B2B/B2C</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Defines data protection requirements.</small>
|
|
</div>
|
|
|
|
<!-- Product/Service Portfolio -->
|
|
<div class="mb-3 question" id="q4">
|
|
<label for="product-portfolio" class="form-label mt-3">How diversified is your product/service portfolio?</label>
|
|
<hr>
|
|
<select class="form-select" id="product-portfolio" name="ProductPortfolio" required>
|
|
<option value="single">Single product/service</option>
|
|
<option value="2-5">2-5 products/services</option>
|
|
<option value="more-than-5">More than 5 products/services</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Indicates the variety of systems requiring protection.</small>
|
|
</div>
|
|
|
|
<!-- Supplier Base Structure -->
|
|
<div class="mb-3 question" id="q5">
|
|
<label for="supplier-base" class="form-label mt-3">What is your supplier base structure?</label>
|
|
<hr>
|
|
<select class="form-select" id="supplier-base" name="SupplierBase" required>
|
|
<option value="single-critical">Single/few critical suppliers</option>
|
|
<option value="moderate">Moderate supplier base</option>
|
|
<option value="highly-diverse">Highly diverse supplier base</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Assesses third-party cybersecurity risks.</small>
|
|
</div>
|
|
|
|
<!-- IT Infrastructure Model -->
|
|
<div class="mb-3 question" id="q6">
|
|
<label class="form-label mt-3">What is your primary IT infrastructure model?</label>
|
|
<hr>
|
|
<div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-on-prem" value="on-premises">
|
|
<label class="form-check-label" for="it-on-prem">On-premises systems</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-cloud" value="cloud-based">
|
|
<label class="form-check-label" for="it-cloud">Cloud-based systems</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-hybrid" value="hybrid">
|
|
<label class="form-check-label" for="it-hybrid">Hybrid infrastructure</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-legacy" value="legacy">
|
|
<label class="form-check-label" for="it-legacy">Legacy systems</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="ITInfrastructure" id="it-modern" value="modern">
|
|
<label class="form-check-label" for="it-modern">Modern architecture</label>
|
|
</div>
|
|
</div>
|
|
<small class="form-text text-muted py-3">Determines specific cybersecurity controls.</small>
|
|
</div>
|
|
|
|
<!-- Intellectual Property Protection -->
|
|
<div class="mb-3 question" id="q7">
|
|
<label class="form-label mt-3">How does your organization protect and manage intellectual property?</label>
|
|
<hr>
|
|
<div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="IPProtection" id="ip-patents" value="patents">
|
|
<label class="form-check-label" for="ip-patents">Patents owned</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="IPProtection" id="ip-licensed" value="licensed-ip">
|
|
<label class="form-check-label" for="ip-licensed">Licensed IP from others</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="IPProtection" id="ip-trade-secrets" value="trade-secrets">
|
|
<label class="form-check-label" for="ip-trade-secrets">Trade secrets</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="IPProtection" id="ip-joint" value="joint-ip">
|
|
<label class="form-check-label" for="ip-joint">Joint IP ownership</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="IPProtection" id="ip-none" value="no-ip">
|
|
<label class="form-check-label" for="ip-none">No significant IP</label>
|
|
</div>
|
|
</div>
|
|
<small class="form-text text-muted py-3">Evaluates cybersecurity needs based on IP ownership.</small>
|
|
</div>
|
|
|
|
<!-- Sensitive Data -->
|
|
<div class="mb-3 question" id="q8">
|
|
<label class="form-label mt-3">What type of sensitive data does your organization handle?</label>
|
|
<hr>
|
|
<div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-personal" value="personal">
|
|
<label class="form-check-label" for="data-personal">Personal customer data</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-financial" value="financial">
|
|
<label class="form-check-label" for="data-financial">Financial records</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-healthcare" value="healthcare">
|
|
<label class="form-check-label" for="data-healthcare">Healthcare information</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-ip" value="ip">
|
|
<label class="form-check-label" for="data-ip">Intellectual property</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-gov" value="government">
|
|
<label class="form-check-label" for="data-gov">Government data</label>
|
|
</div>
|
|
<div class="form-check">
|
|
<input class="form-check-input" type="checkbox" name="SensitiveData" id="data-payment" value="payment">
|
|
<label class="form-check-label" for="data-payment">Payment card data</label>
|
|
</div>
|
|
</div>
|
|
<small class="form-text text-muted py-3">Identifies required compliance frameworks.</small>
|
|
</div>
|
|
|
|
<!-- Critical Business Systems -->
|
|
<div class="mb-3 question" id="q9">
|
|
<label for="integration-level" class="form-label mt-3">How integrated are your critical business systems?</label>
|
|
<hr>
|
|
<select class="form-select" id="integration-level" name="IntegrationLevel" required>
|
|
<option value="fully-integrated">Fully integrated</option>
|
|
<option value="partially-integrated">Partially integrated</option>
|
|
<option value="mostly-separate">Mostly separate</option>
|
|
<option value="completely-isolated">Completely isolated</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Evaluates potential for cascade failures.</small>
|
|
</div>
|
|
|
|
<!-- Remote Work Policy -->
|
|
<div class="mb-3 question" id="q10">
|
|
<label for="remote-policy" class="form-label mt-3">What is your organization's remote work policy?</label>
|
|
<hr>
|
|
<select class="form-select" id="remote-policy" name="RemotePolicy" required>
|
|
<option value="no-remote">No remote work allowed</option>
|
|
<option value="limited-remote">Limited remote work options</option>
|
|
<option value="hybrid">Hybrid work model</option>
|
|
<option value="fully-remote">Fully remote operations available</option>
|
|
</select>
|
|
<small class="form-text text-muted py-3">Determines the scope of remote access security requirements.</small>
|
|
</div>
|
|
|
|
<div class="d-flex justify-content-end mt-4">
|
|
<button type="button" class="btn btn-lg btn-outline-secondary me-3" id="back">Back</button>
|
|
<button type="submit" class="btn btn-primary btn-lg" id="submit">Next</button>
|
|
</div>
|
|
</form>
|
|
</div>
|
|
</div>
|
|
</div>
|
|
{{end}}
|
|
|
|
{{define "bottom"}}
|
|
<script src="/static/js/formHandling.js"></script>
|
|
{{end}}
|