How does this skill help with defense-in-depth?

It organizes controls into distinct layers (Network, Application, Data, etc.) and types (Preventive, Detective, Corrective) to ensure that if one control fails, others are in place to mitigate the threat effectively.

What is a 'coverage score' in this context?

It is a calculated metric based on the implementation status and effectiveness of your security controls, helping you quantify how well a specific threat is mitigated across your environment.

Can I use this for compliance audits?

Yes, the skill includes templates with compliance references for frameworks like PCI-DSS, NIST 800-63B, and GDPR to help align your technical mitigations with regulatory requirements.

Does it support identifying security gaps?

Absolutely. The skill features automated gap analysis that flags threats without mitigations, insufficient control diversity, or lack of defense-in-depth, providing clear recommendations for improvement.

Threat Mitigation Mapping

Name: Threat Mitigation Mapping
Author: ccf

byccf

0•

Seguridad y Pruebas

Maps identified security threats to specific controls and mitigations to strengthen system defenses and prioritize remediation efforts.

The Threat Mitigation Mapping skill empowers developers and security architects to bridge the gap between risk identification and remediation. By utilizing structured models and templates, it helps categorize controls into preventive, detective, and corrective layers while ensuring defense-in-depth across network, application, and data tiers. Whether you are designing a new security architecture or conducting a risk treatment plan, this skill provides the framework to validate control effectiveness, calculate coverage scores, and identify critical security gaps within your codebase or infrastructure.

Características Principales

01Maps threats to specific security control categories including Preventive, Detective, and Corrective

02Calculates control coverage and effectiveness scores for data-driven risk prioritization

03Identifies security gaps and provides actionable remediation recommendations for unmapped threats

040 GitHub stars

05Implements defense-in-depth strategies across multiple architectural layers (Network, App, Data, Endpoint)

06Includes a library of standard security controls with compliance references for PCI-DSS, NIST, and GDPR

Casos de Uso

01Prioritizing security investments based on risk impact and control effectiveness

02Conducting security architecture reviews for new feature deployments or infrastructure changes

03Creating automated remediation roadmaps and validating control coverage during security audits

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add ccf/claude-code-ccf-marketplace threat-mitigation-mapping

For use in Claude.ai and ChatGPT

Download Skill