What is the primary focus of the ops-security-audit skill?

The skill focuses on infrastructure security and compliance validation rather than application code, providing a structured workflow for auditing cloud accounts, network configurations, and IAM policies.

Which security tools does the skill integrate with?

It provides templates and commands for standard tools including AWS Security Hub, AWS Config, GuardDuty, Trivy, Checkov, and ScoutSuite.

Can this skill help with SOC2 or PCI-DSS compliance?

Yes, it includes specific compliance mapping templates and checklists designed to align infrastructure configurations with SOC2 Type II and PCI-DSS 4.0 requirements.

How does it handle pressure to skip security steps?

The skill includes built-in 'Pressure Resistance' logic that identifies common rationalizations for skipping security tasks and provides scripted responses to ensure best practices are maintained.

Does it replace the security-reviewer skill?

No, it is complementary. Use ops-security-audit for infrastructure and cloud configurations, and use the security-reviewer skill for application-level code security.

Infrastructure Security Auditor

Name: Infrastructure Security Auditor
Author: LerianStudio

byLerianStudio

•

セキュリティとテスト

Conducts systematic infrastructure security audits, vulnerability assessments, and compliance validations through structured workflows.

概要

The Infrastructure Security Auditor skill provides a rigorous framework for evaluating the security posture of cloud environments. It guides users through a comprehensive six-phase process covering scope definition, automated scanning using tools like AWS Security Hub and Checkov, manual reviews of IAM and network configurations, and mapping findings to major compliance frameworks like SOC2 and PCI-DSS. This skill is particularly valuable for maintaining high-quality security gates in AI-driven workflows, ensuring that critical security steps are never bypassed due to deadline pressure or oversight.

主な機能

Deep-dive manual review checklists for IAM, Networking, and Data Protection
Compliance mapping for SOC2 Type II and PCI-DSS 4.0 frameworks
Remediation prioritization matrix and closure reporting templates
Automated scan templates for AWS Security Hub, Trivy, and Checkov
Multi-phase audit workflow from scope definition to remediation verification
17 GitHub stars

ユースケース

Performing quarterly infrastructure security posture reviews
Preparing for annual SOC2 or PCI-DSS compliance audits
Conducting security assessments for new service deployments or cloud migrations

概要

主な機能

Deep-dive manual review checklists for IAM, Networking, and Data Protection
Compliance mapping for SOC2 Type II and PCI-DSS 4.0 frameworks
Remediation prioritization matrix and closure reporting templates
Automated scan templates for AWS Security Hub, Trivy, and Checkov
Multi-phase audit workflow from scope definition to remediation verification
17 GitHub stars

ユースケース

Performing quarterly infrastructure security posture reviews
Preparing for annual SOC2 or PCI-DSS compliance audits
Conducting security assessments for new service deployments or cloud migrations