Does it support Advanced Protection Program enrollment?

Yes, it provides specific workflows for enrolling high-risk Super Admin accounts into Google's Advanced Protection Program for maximum account security.

Does this skill work with Microsoft 365 environments?

No, this skill is specifically designed for Google Workspace settings and the Admin SDK; it does not apply to Microsoft 365 or Azure AD/Entra ID controls.

Can this skill help with regulatory compliance?

Yes, it is designed to align with CIS benchmarks and common enterprise security standards for cloud office environments, assisting with HIPAA, GDPR, and SOC2 compliance.

What level of access is required to use this skill effectively?

You need Super Admin access to the Google Admin Console and DNS management permissions to configure SPF, DKIM, and DMARC records.

Does this skill utilize specific command-line tools?

Yes, the workflows often utilize GAM (Google Apps Manager), a powerful CLI tool for Google Workspace administration, to automate security audits and configurations.

Google Workspace Admin Security Hardening

Name: Google Workspace Admin Security Hardening
Author: micsapp

bymicsapp

0•

보안 및 테스팅

Hardens Google Workspace environments using enterprise-grade security configurations, identity protection, and data loss prevention policies.

This skill provides a comprehensive framework for securing Google Workspace environments against modern threats like Business Email Compromise (BEC) and unauthorized data exfiltration. It guides administrators through critical hardening steps, including phishing-resistant MFA enforcement with FIDO2 security keys, automated email authentication setup (SPF, DKIM, DMARC), and sophisticated Data Loss Prevention (DLP) rules. By implementing OAuth application controls and auditing external sharing permissions, this skill ensures a high-security posture aligned with CIS benchmarks and enterprise compliance requirements.

주요 기능

01Data Loss Prevention (DLP) for Gmail and Drive

02OAuth application and third-party API control

03SPF, DKIM, and DMARC email authentication setup

04Phishing-resistant MFA & FIDO2 enforcement

05Super Admin account hardening & monitoring

060 GitHub stars

사용 사례

01Protecting executive accounts from targeted phishing and BEC attacks

02Preventing sensitive data leaks via external Drive sharing

03Achieving CIS benchmark compliance for Google Workspace

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add micsapp/micstec-skills implementing-google-workspace-admin-security

For use in Claude.ai and ChatGPT

주요 기능

01Data Loss Prevention (DLP) for Gmail and Drive

02OAuth application and third-party API control

03SPF, DKIM, and DMARC email authentication setup

04Phishing-resistant MFA & FIDO2 enforcement

05Super Admin account hardening & monitoring

060 GitHub stars

사용 사례

01Protecting executive accounts from targeted phishing and BEC attacks

02Preventing sensitive data leaks via external Drive sharing

03Achieving CIS benchmark compliance for Google Workspace

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add micsapp/micstec-skills implementing-google-workspace-admin-security

For use in Claude.ai and ChatGPT