Cybersecurity Skills Bundle | Prompeteer.ai

Security auditing, vulnerability assessment, compliance frameworks, secure coding practices, and incident response skills.

Included Skills (80)

  1. Compliance Program Orchestrator — This skill helps compliance teams configure frameworks, compute control overlap, simulate audits, and consolidate evidence across multiple compliance frameworks.
  2. Feature Flag Architect — This skill helps software teams manage feature flags throughout their lifecycle, from creation and rollout to auditing and removal.
  3. CLAUDE.md Optimizer — This skill audits and improves CLAUDE.md files within a repository, ensuring optimal project context for Claude Code and aiding developers.
  4. Feature Flag Architect — This skill helps software teams manage feature flags throughout their lifecycle, from creation and rollout to auditing and eventual removal.
  5. CLAUDE.md Optimizer — This skill audits and improves CLAUDE.md files within a repository, ensuring optimal project context for Claude Code assistants.
  6. Dependency Auditor — Audit and manage dependencies across multi-language projects. Identifies vulnerabilities, license conflicts, transitive dependency risks, and safe-upgrade paths. Use when auditing third-party packages before release, investigating a CVE, planning a major version bump, or running a license-compliance review.
  7. AEO Content Optimizer — This skill optimizes content for citation by AI language models, helping content creators become authoritative sources in AI-generated responses.
  8. Secrets Hygiene Auditor — Audits codebases for leaked secrets and insecure environment variable practices, helping developers and security teams improve application security.
  9. Terraform IaC Assistant — This skill helps engineers design secure, well-structured Terraform infrastructure code by providing module design, security auditing, and CI/CD integration.
  10. Operator Building Assistant — This skill helps developers build robust Kubernetes Operators by providing tools for CRD validation, reconcile-loop linting, and capability auditing.
  11. Backend System Architect — Designs robust backend systems, including APIs, databases, and security, assisting developers with architecture and optimization tasks.
  12. Operator Building Assistant — This skill assists developers building Kubernetes Operators by providing tools for CRD validation, reconcile loop linting, and capability auditing.
  13. EU AI Act Specialist — This skill helps compliance teams navigate the EU AI Act by determining risk tiers, conformity assessments, and organizational obligations.
  14. Analytics Tracking Assistant — Assists users in setting up, improving, and auditing analytics tracking and measurement for actionable marketing and product insights.
  15. EU AI Act Specialist — This skill helps compliance teams navigate the EU AI Act by determining risk tiers, conformity assessments, and organizational obligations for AI systems.
  16. Incident Commander — Comprehensive incident response framework from detection through resolution and post-incident review. Battle-tested SRE/DevOps practices: severity classification, timeline reconstruction, structured post-incident analysis. Use when declaring an incident, coordinating multi-team response during an outage, leading a post-mortem, or setting up on-call practices for a new service.
  17. Google Cloud Waf Security — Generates security-focused guidance for Google Cloud workloads based on the design principles and recommendations in the Google Cloud Well-Architected Framework (WAF). Use this skill to evaluate a workload, identify security requirements, and provide actionable recommendations for IAM, network security, data protection, and operational security.
  18. Programmatic SEO Generator — This skill helps users create SEO-optimized pages at scale using templates and data for improved search engine rankings.
  19. Amass Network Mapper — Enumerate subdomains and map network attack surfaces using OWASP Amass for comprehensive reconnaissance and asset discovery.
  20. Iso42001 Specialist — ISO/IEC 42001:2023 AI Management System (AIMS) specialist for compliance teams running internal audits. Three decisions: (1) Where are the gaps against Clauses 4-10 and what do we close first? (2) What goes in the AI risk register and which Annex A controls treat each risk? (3) What's the 12-month internal audit plan that satisfies Clause 9.2? Use when preparing for certification, scoping internal audit cycles, or onboarding AI systems into an existing ISMS (27001) / QMS (13485) program. NOT an executive AI strategy skill (see chief-ai-officer-advisor). NOT EU AI Act compliance (see compliance-team-eu-ai-act).
  21. Iso42001 Specialist — ISO/IEC 42001:2023 AI Management System (AIMS) specialist for compliance teams running internal audits. Three decisions: (1) Where are the gaps against Clauses 4-10 and what do we close first? (2) What goes in the AI risk register and which Annex A controls treat each risk? (3) What's the 12-month internal audit plan that satisfies Clause 9.2? Use when preparing for certification, scoping internal audit cycles, or onboarding AI systems into an existing ISMS (27001) / QMS (13485) program. NOT an executive AI strategy skill (see chief-ai-officer-advisor). NOT EU AI Act compliance (see compliance-team-eu-ai-act).
  22. RFP Response Generator — Generates structured responses to RFPs, RFIs, and RFQs, helping bid managers and sales teams create effective proposals.
  23. Changelog Generator — Produce consistent, auditable release notes from Conventional Commits. Separates commit parsing, semantic-bump logic, and changelog rendering for automated releases with editorial control. Use when cutting a release, generating CHANGELOG.md from git history, or automating release notes in CI.
  24. Senior Secops — Senior SecOps engineer skill for application security, vulnerability management, compliance verification, and secure development practices. Runs SAST/DAST scans, generates CVE remediation plans, checks dependency vulnerabilities, creates security policies, enforces secure coding patterns, and automates compliance checks against SOC2, PCI-DSS, HIPAA, and GDPR. Use when conducting a security review or audit, responding to a CVE or security incident, hardening infrastructure, implementing authentication or secrets management, running penetration test prep, checking OWASP Top 10 exposure, or enforcing security controls in CI/CD pipelines.
  25. Security Incident Responder — This skill classifies, triages, and manages declared security incidents, determining severity, escalation paths, and initiating forensic evidence collection for security teams.
  26. ISMS Audit Assistant — This skill helps security professionals conduct ISO 27001 ISMS audits, assess controls, and prepare for certification.
  27. Security Engineering Toolkit — This toolkit helps developers and security engineers perform threat modeling, vulnerability analysis, and secure architecture design using industry best practices.
  28. AI Security Assessor — Assess AI/ML systems for vulnerabilities like prompt injection, model inversion, and data poisoning, aiding security engineers and AI developers.
  29. Schema Markup Specialist — Assists users in implementing, auditing, and validating schema markup to improve search visibility and rich result eligibility.
  30. Website Architecture Planner — This skill helps users audit, redesign, or plan their website's structure, navigation, and internal linking strategy for improved SEO and user experience.
  31. ISO 27001 ISMS Manager — This skill helps HealthTech and MedTech companies implement ISO 27001 ISMS for cybersecurity governance, risk assessment, and compliance verification.
  32. FDA Regulatory Consultant — Provides FDA regulatory guidance to medical device companies regarding submissions, compliance, and cybersecurity requirements, ensuring regulatory success.
  33. Accessibility Audit Tool — This skill scans, fixes, and verifies WCAG 2.2 Level A/AA compliance in web codebases, aiding developers and compliance teams.
  34. Cloud Security Assessor — Assess cloud infrastructure for security misconfigurations, IAM privilege escalation, and public exposure across AWS, Azure, and GCP environments.
  35. Proactive Threat Hunting — This skill proactively identifies threats by using hypothesis-driven hunting, IOC analysis, and anomaly detection for security analysts.
  36. ISO 13485 QMS Manager — Assists medical device organizations with ISO 13485 Quality Management System implementation, maintenance, and audit preparation, ensuring regulatory compliance.
  37. Checkov Security Scanner — This skill provides expert guidance for using Checkov to scan infrastructure-as-code for security misconfigurations and compliance violations, aiding developers.
  38. Falco Security Advisor — Provides expert guidance for setting up Falco to detect anomalous container and Kubernetes behavior, aiding developers in real-time threat detection.
  39. Secrets Vault Management — This skill helps DevOps and security engineers manage secret infrastructure, including Vault, cloud secret stores, and secret rotation.
  40. Docker Development Assistant — This skill optimizes Dockerfiles, orchestrates docker-compose configurations, and hardens container security for developers following container best practices.
  41. GDPR Compliance Automation — This skill automates GDPR/DSGVO compliance by scanning code for privacy risks and generating DPIA documentation for developers and legal teams.
  42. Stack Evaluation Tool — Evaluates technology stacks, providing TCO analysis, security assessments, and intelligent recommendations for engineering teams choosing technologies.
  43. PR Review Expert — This skill reviews pull requests, analyzes code changes, checks for security issues, and assesses code quality, assisting software engineers.
  44. Analytics Tracking Assistant — Assists users in setting up, improving, and auditing analytics tracking and measurement for actionable marketing and product insights.
  45. Analytics Tracking Assistant — This skill sets up, audits, and debugs analytics tracking implementations, ensuring accurate data capture for informed decision-making by marketing teams.
  46. Google Cloud Waf Reliability — Generates reliability-focused guidance for Google Cloud workloads based on the design principles and recommendations in the Google Cloud Well-Architected Framework. Use this skill to evaluate a workload, identify reliability requirements, and provide actionable recommendations for build, deploy, and manage the workload reliably in Google Cloud.
  47. Slash Command Factory — Generate custom Claude Code slash commands through intelligent 5-7 question flow. Creates powerful commands for business research, content analysis, healthcare compliance, API integration, documentation automation, and workflow optimization. Outputs organized commands to generated-commands/ with validation and installation guidance.
  48. MDR Compliance Specialist — This skill assists medical device companies with EU MDR 2017/745 compliance, covering classification, documentation, clinical evidence, and post-market surveillance.
  49. Quality System Manager — Provides quality system governance and regulatory compliance oversight for HealthTech and MedTech companies, ensuring ISO 13485 adherence.
  50. QMS Audit Expertise — Provides ISO 13485 internal audit expertise for medical device QMS, assisting with planning, execution, classification, and CAPA verification.
  51. QMS Document Manager — Manages document control for medical device QMS, covering numbering, versioning, change management, and regulatory compliance for quality professionals.
  52. Azure Architecture Designer — Design scalable Azure cloud architectures and infrastructure-as-code templates, optimizing cost and compliance for startups and enterprises.
  53. Discord Channel Configurator — Helps users configure a Discord channel by saving the bot token and setting access policies for enhanced bot security.
  54. SOC 2 Assistant — Assists SaaS companies preparing for SOC 2 audits by mapping criteria, building matrices, and assessing audit readiness.
  55. Security Penetration Testing — This skill performs security audits and penetration testing to find vulnerabilities, assisting security engineers and developers in improving system security.
  56. Workspace CLI Assistant — Automate Google Workspace administration tasks using the gws CLI, helping administrators manage and optimize their organization's Google services.
  57. AI Citation Optimizer — This skill helps content creators optimize their content to be cited by AI search engines like ChatGPT and Perplexity.
  58. Compliance Program Readiness — This skill helps compliance professionals pressure-test their compliance programs using a multi-framework approach, ensuring readiness for audits and certifications.
  59. GDPR Audit Prep — This skill helps data protection officers prepare for GDPR audits by providing six key Article-cited questions to pressure-test compliance.
  60. ISO 27001 Audit — This skill helps ISO 27001 practitioners prepare for audits by providing a six-question forcing interrogation to pressure-test their ISMS work.
  61. SOC2 Audit Readiness — This skill helps organizations prepare for SOC 2 Type II audits by providing a structured readiness assessment focused on the observation period.
  62. Security Review Assistant — This skill helps identify potential security risks in plans involving data, compliance, or production access, aiding security professionals.
  63. Red Team Planner — Aids in planning and executing red team engagements by simulating adversary attacks to test security effectiveness.
  64. M365 Tenant Automation — Automates Microsoft 365 tenant administration tasks, including user management, security policies, and configuration, for Global Administrators.
  65. Cosign Security Assistant — Provides expert guidance on using Cosign for signing, verifying, and managing container images, enhancing software supply chain security for developers.
  66. Kyverno Policy Assistant — Provides expert assistance for Kyverno, a Kubernetes-native policy engine, helping developers enforce policies and ensure cluster compliance.
  67. Semgrep Code Analysis — Provides expert guidance on using Semgrep to find bugs, security vulnerabilities, and anti-patterns, assisting developers with code analysis.
  68. Security Anti-Pattern Detection — This skill automatically detects and blocks common security vulnerabilities before code is written, providing a safety net for security-sensitive code.
  69. AIMS Audit Tool — This skill conducts an ISO/IEC 42001 AIMS internal audit using six key questions, assisting with certification and system onboarding.
  70. FDA QSR Audit — This skill helps medical device companies prepare for FDA 21 CFR 820 audits by providing a six-question forcing interrogation.
  71. ISO 13485 Audit — This skill helps medical device companies prepare for ISO 13485 audits by providing a set of forcing questions to pressure-test their QMS work.
  72. Data Quality Auditor — This skill audits datasets for quality issues, profiles data, detects anomalies, and generates a remediation plan for data engineers.
  73. Arcjet Security Assistant — Provides expert guidance for Arcjet, a developer-first security platform, helping developers add security layers to JavaScript/TypeScript applications without managing infrastructure.
  74. Better Stack Assistant — Provides expert guidance for Better Stack, helping developers configure uptime monitoring, log management, incident response, and status pages.
  75. Technical Change Tracker — Track code changes with structured records and a state machine, enabling audit trails and seamless AI session handoffs.
  76. Auth System Designer — Sets up authentication and authorization for web applications, including OAuth integration, session management, and role-based access control, benefiting developers.
  77. Vendor Performance Manager — Assists BizOps and IT teams with reviewing, scoring, and auditing third-party vendor relationships and SaaS portfolio performance.
  78. Procurement Spend Optimizer — Analyzes spend data, categorizes purchases, and optimizes supplier consolidation for procurement and business operations professionals seeking cost savings.
  79. Skill Security Auditor — This skill audits AI agent skills for security vulnerabilities before installation, providing a clear verdict and remediation guidance for developers.
  80. HIPAA Compliance Implementation — This skill helps developers implement HIPAA compliance in healthcare applications, covering PHI handling, encryption, audit logging, and access controls.