Security & Compliance
Lynx Compliance - Data Classification & BIA
Data classification taxonomy, data inventory (with NetBox linkage when available), Business Impact Analysis. Covers NIST CSF 2.0 ID.AM-07/08, ID.RA-04, PR.DS.
lynx_compliance_data
· v19.0.1.0.0
· Premium
What this solves
Lynx Compliance - Data Classification & BIA
Catalog the data your business actually depends on, classify it, and run the Business Impact Analysis the auditor will ask for - all on the same record store as your control catalog.
Most teams can list their servers but not their data assets. NIST CSF 2.0 ID.AM-07/08 wants the opposite: a living inventory of customer databases, billing systems, and PII datasets, each with a classification, an owner, a retention period, and a documented impact if it goes down. This module adds the data inventory, a four-tier classification taxonomy, and a BIA register that captures MTD, RTO, RPO, and impact across three horizons.
Key Features
Four-tier classification - lynx.data.classification (Public / Internal / Sensitive / Confidential), seeded on install and extensible.
Data inventory - lynx.data.inventory records each asset with classification, owner, custodian, retention, cross-border flag, and processing purpose.
System linkage - polymorphic Reference field surfaces NetBox DCIM/IPAM records when lynx_dcim_ipam is present, or any other asset model contributed by addons.
Business Impact Analysis - lynx.bia captures MTD/RTO/RPO and four-dimension impact (financial, regulatory, reputational, operational) at three time horizons.
Control wiring - data assets and BIAs become live evidence on relevant compliance.control.assessment rows.
Integrates With
lynx_compliance - inventory and BIA records satisfy ID.AM-07/08, ID.RA-04, and PR.DS controls.
lynx_dcim_ipam - data assets link directly to the NetBox systems that host them.
Try Lynx Compliance - Data Classification & BIA on your team.
Free trial, no credit card. Talk to sales when you're ready.