Can I use this for gap analysis?

Absolutely. The skill facilitates comparing your current security profile against a target profile to identify and prioritize specific improvements based on risk appetite.

What artifacts does this skill help generate?

It assists in creating CSF Current and Target Profiles, Gap Analysis Reports, Maturity Scorecards, and prioritized Improvement Roadmaps.

What is the NIST CSF 2.0 Maturity Assessment skill?

It is a specialized capability for Claude Code designed to help users perform structured cybersecurity audits based on the NIST Cybersecurity Framework 2.0.

Does this skill support the new 'Govern' function?

Yes, it fully incorporates the CSF 2.0 update released in 2024, including the Govern function and its categories like Organizational Context and Supply Chain Risk.

How does it measure maturity levels?

It uses the four NIST Implementation Tiers: Partial (1), Risk-Informed (2), Repeatable (3), and Adaptive (4) to score organizational posture and implementation completeness.

NIST CSF 2.0 Maturity Assessment

Name: NIST CSF 2.0 Maturity Assessment
Author: mukul975

bymukul975

•

4,121

•

Security & Testing

Conducts comprehensive organizational cybersecurity assessments based on the NIST CSF 2.0 framework and Implementation Tiers.

This skill empowers Claude to guide organizations through the NIST Cybersecurity Framework (CSF) 2.0 lifecycle, from initial scoping and current state evaluation to defining target profiles and creating actionable improvement roadmaps. It integrates the latest 'Govern' function and utilizes the four Implementation Tiers to measure maturity across 22 categories, helping security professionals identify critical gaps, prioritize risk-based investments, and ensure alignment with industry best practices for cybersecurity risk management.

Key Features

01Implementation Tier evaluation (Tiers 1-4) for maturity scoring

02Cybersecurity improvement roadmap generation with prioritized wins

03NIST CSF 2.0 taxonomy mapping across 6 core Functions

044,121 GitHub stars

05Gap analysis between Current and Target security profiles

06Assessment of the new CSF 2.0 'Govern' function and subcategories

Use Cases

01Validating compliance and security controls against NIST standards

02Developing a strategic roadmap for security program improvement

03Conducting annual enterprise-wide cybersecurity maturity audits

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-nist-csf-maturity-assessment

For use in Claude.ai and ChatGPT

Key Features

01Implementation Tier evaluation (Tiers 1-4) for maturity scoring

02Cybersecurity improvement roadmap generation with prioritized wins

03NIST CSF 2.0 taxonomy mapping across 6 core Functions

044,121 GitHub stars

05Gap analysis between Current and Target security profiles

06Assessment of the new CSF 2.0 'Govern' function and subcategories

Use Cases

01Validating compliance and security controls against NIST standards

02Developing a strategic roadmap for security program improvement

03Conducting annual enterprise-wide cybersecurity maturity audits

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-nist-csf-maturity-assessment

For use in Claude.ai and ChatGPT