Is there a tool included for audit planning?

Yes, the skill references an integrated Python script for generating risk-based audit plans in various formats based on control priority.

How does it handle audit findings?

It uses a standardized template to document evidence, impact, and root cause, while providing a workflow for tracking corrective actions through to closure.

Can I use this for internal audits?

Absolutely. The skill includes a risk-based audit scheduling methodology and execution steps specifically designed for internal audit management.

What security controls does it cover?

It covers the full range of ISO 27002 control categories, including organizational, people, physical, and technological controls such as encryption, access rights, and logging.

Does this skill help with ISO 27001 certification?

Yes, it provides structured guidance for Stage 1 and Stage 2 audit preparation, including documentation checklists and operational readiness verification.

ISMS Audit Expert

Name: ISMS Audit Expert
Author: oabdelmaksoud

byoabdelmaksoud

0•

セキュリティとテスト

Manages Information Security Management System (ISMS) audits and ISO 27001 compliance workflows through structured control assessments and finding management.

The ISMS Audit Expert skill provides a comprehensive framework for navigating the complex ISO 27001 certification lifecycle. It assists security professionals and auditors in creating risk-based audit programs, executing evidence collection, and verifying security controls across organizational, people, physical, and technological categories. By providing standardized templates for finding documentation and corrective action workflows, it ensures that nonconformities are addressed systematically, helping organizations maintain a robust security posture and achieve successful certification or surveillance audit outcomes.

主な機能

01Certification support for Stage 1 and Stage 2 readiness

02Risk-based audit program management and scheduling

03Comprehensive control testing for ISO 27002/Annex A requirements

040 GitHub stars

05Standardized finding documentation with root cause analysis

06Performance metric tracking for audit effectiveness

ユースケース

01Preparing for ISO 27001 certification or surveillance audits

02Conducting internal security audits to verify control effectiveness

03Managing the lifecycle of security findings and corrective actions

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add oabdelmaksoud/superclaw isms-audit-expert

For use in Claude.ai and ChatGPT

主な機能

01Certification support for Stage 1 and Stage 2 readiness

02Risk-based audit program management and scheduling

03Comprehensive control testing for ISO 27002/Annex A requirements

040 GitHub stars

05Standardized finding documentation with root cause analysis

06Performance metric tracking for audit effectiveness

ユースケース

01Preparing for ISO 27001 certification or surveillance audits

02Conducting internal security audits to verify control effectiveness

03Managing the lifecycle of security findings and corrective actions

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add oabdelmaksoud/superclaw isms-audit-expert

For use in Claude.ai and ChatGPT