# Skills tagged "CISA" 8 skills with this tag. URL: https://rakenne.app/skill-tags/cisa/index.md - [Backup Immutability Auditor (CISA CPG 3.1)](https://rakenne.app/skills/backup-immutability-auditor/index.md) — Document and validate CISA CPG 3.1 Offline Backup & Verification Log: air-gapped or immutable backups so even a Global Admin cannot delete secondary copies, plus periodic Test Restore Log evidence … - [CISA Circular Formatter (CPG 7.1)](https://rakenne.app/skills/cisa-circular-formatter/index.md) — Format incident data for CISA and SRMA reporting under CPG 7.1 and CIRCIA. Enforces 72-hour (covered incident) and 24-hour (ransomware) notification windows and validates Information Requirements so … - [MFA Exception Rationalizer (CISA CPG 1.1)](https://rakenne.app/skills/mfa-exception-rationalizer/index.md) — Document the transition to phishing-resistant MFA and draft MFA-exception rationales for Critical Infrastructure. Identifies legacy systems that cannot support MFA, proposes compensating controls … - [NIST Password Logic Adapter (CISA CPG 1.2)](https://rakenne.app/skills/nist-password-logic-adapter/index.md) — Rewrite legacy password policies to prioritize length and entropy over complexity and aging, and draft the Compromised Password Detection Protocol. Aligns with NIST SP 800-63B and CISA CPG 1.2; … - [OT Asset Integrity Register (CISA CPG 2.1)](https://rakenne.app/skills/ics-firmware-monitor/index.md) — Maintain and validate an OT Asset Integrity Register for CISA CPG 2.1: catalog ICS, PLCs, HMIs, and sensors with firmware versions and physical locations; link assets to CISA KEV and vendor advisories … - [Privilege Training Mapper (CISA CPG 4.3)](https://rakenne.app/skills/privilege-training-mapper/index.md) — Map privileged job functions to role-specific training modules and validate training compliance. Cross-reference Privileged User List with HR training log to flag missing or overdue certifications. - [Purdue Level Mapper (CISA CPG 2.2)](https://rakenne.app/skills/purdue-level-mapper/index.md) — IT/OT network segmentation aligned to CISA CPG 2.2 and the Purdue Model. Map assets to Levels 0–5, draft security requirements per transition, and validate no direct Business-to-PLC without DMZ. - [Safe Harbor Drafter (CISA CPG 5.1 VDP)](https://rakenne.app/skills/safe-harbor-drafter/index.md) — Draft and validate a Vulnerability Disclosure Policy (VDP) with CISA-aligned Safe Harbor language and RFC 9116–compliant reporting. Ensures researcher protection and clear reporting mechanism. --- Back to [All Tags](https://rakenne.app/skill-tags/) | [Skill Library](https://rakenne.app/skills/)