Does it support Just-In-Time (JIT) access patterns?

Yes, one of the primary remediation steps in the workflow is converting standing privileges into Just-In-Time (JIT) access where possible.

Which platforms can be audited using this skill?

It provides procedures for Active Directory, Cloud environments (AWS IAM, Azure RBAC, GCP IAM), major databases (SQL Server, Oracle, PostgreSQL), and PAM solutions.

Can this skill identify orphaned accounts?

Yes, the discovery workflow specifically targets accounts with no identified owner, inactive accounts (>90 days), and service accounts with excessive permissions.

What frameworks does this skill support?

The skill is mapped to NIST CSF 2.0 (PR.AA-01, PR.AA-02, PR.AA-05, PR.AA-06) and helps satisfy requirements for SOC 2, PCI DSS, HIPAA, and SOX.

Privileged Account Access Review

Name: Privileged Account Access Review
Author: mukul975

bymukul975

•

4,121

•

Security & Testing

Conducts systematic reviews of privileged accounts to validate access rights and enforce the principle of least privilege across identity infrastructure.

This skill provides Claude with specialized capabilities to perform comprehensive privileged account access reviews (PAAR) within Identity and Access Management (IAM) and Privileged Access Management (PAM) environments. It guides the AI through account discovery, business justification validation, and remediation of excessive permissions, ensuring alignment with frameworks like NIST CSF 2.0, SOC 2, PCI DSS, and HIPAA. It is an essential tool for security auditors and IAM engineers looking to standardize identity governance and reduce the attack surface of elevated accounts.

Key Features

014,121 GitHub stars

02Mapping to NIST CSF 2.0 controls for identity and access management

03Comprehensive account discovery across AD, Cloud (AWS/Azure/GCP), and Databases

04Automated decision matrix for account certification, revocation, and remediation

05Standardized reporting templates for compliance audits and security metrics

06Four-pillar review framework: Discover, Validate, Remediate, and Monitor

Use Cases

01Validating security controls and account usage during incident response

02Conducting scheduled quarterly compliance audits for high-privilege accounts

03Identifying and remediating orphaned service accounts or excessive 'break-glass' access

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-privileged-account-access-review

For use in Claude.ai and ChatGPT

Key Features

014,121 GitHub stars

02Mapping to NIST CSF 2.0 controls for identity and access management

03Comprehensive account discovery across AD, Cloud (AWS/Azure/GCP), and Databases

04Automated decision matrix for account certification, revocation, and remediation

05Standardized reporting templates for compliance audits and security metrics

06Four-pillar review framework: Discover, Validate, Remediate, and Monitor

Use Cases

01Validating security controls and account usage during incident response

02Conducting scheduled quarterly compliance audits for high-privilege accounts

03Identifying and remediating orphaned service accounts or excessive 'break-glass' access

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add mukul975/anthropic-cybersecurity-skills performing-privileged-account-access-review

For use in Claude.ai and ChatGPT