# Skills tagged "Cybersecurity" 20 skills with this tag. URL: https://rakenne.app/skill-tags/cybersecurity/index.md - [CIS Controls Implementation Author](https://rakenne.app/skills/cis-controls-implementation-author/index.md) — Guided elaboration of CIS Controls v8 implementation plan — safeguard selection, IG1/IG2/IG3 alignment, and mapping to existing policies or controls. - [Cybersecurity Incident Response Plan (Sector & State-Specific)](https://rakenne.app/skills/cybersecurity-irp/index.md) — Draft a cybersecurity Incident Response Plan aligned with NIST SP 800-61r3, tailored to industry sector (HIPAA, GLBA, PCI DSS, FERPA, NERC CIP) and state breach notification laws. Includes detection … - [HITRUST CSF Assessment](https://rakenne.app/skills/hitrust-csf-assessment/index.md) — Draft HITRUST CSF Validated Assessment deliverables for e1, i1, or r2 certification: control requirement responses at all maturity levels, evidence artifacts, Corrective Action Plans, and the … - [Incident Response Playbook](https://rakenne.app/skills/incident-response-playbook/index.md) — Draft step-by-step security playbooks for any cyber attack type. Tailored to your organisation, tech stack, and threat landscape. Produces detection criteria, containment, eradication, recovery, … - [IT-Security for Critical Infrastructure (KRITIS)](https://rakenne.app/skills/kritis-it-security/index.md) — Erstellt Sicherheitskonzepte fuer Betreiber Kritischer Infrastrukturen (KRITIS) gemaess BSI IT-Grundschutz und IT-Sicherheitsgesetz 2.0. Mappt Assets auf Grundschutz-Bausteine, prueft … - [NIS2 Entity Classification](https://rakenne.app/skills/nis2-entity-classification/index.md) — Classify an organization as essential, important, or out-of-scope under the NIS2 Directive (EU 2022/2555). Maps activities to Annex I/II sectors, applies size thresholds (medium/large enterprise … - [NIS2 Gap Assessment](https://rakenne.app/skills/nis2-gap-assessment/index.md) — Perform a structured gap assessment against all NIS2 Directive Art. 21 cybersecurity risk-management measures. Rates maturity (0-5) per measure, detects missing compliance artifacts, and builds a … - [NIS2 Governance & Risk Management](https://rakenne.app/skills/nis2-governance-risk/index.md) — Document management body accountability and cybersecurity risk management measures per NIS2 Directive Art. 20-21. Covers all 11 mandatory measures (a)-(k), governance approval workflows, and … - [NIS2 Incident Reporting](https://rakenne.app/skills/nis2-incident-reporting/index.md) — Draft NIS2-compliant incident reports following Art. 23 timelines: early warning within 24 hours, incident notification within 72 hours, and final report within one month. Classifies incident … - [NIS2 Policies & Procedures](https://rakenne.app/skills/nis2-policies-procedures/index.md) — Draft and validate cybersecurity policies and procedures for all 11 NIS2 Art. 21(2) mandatory measures. Validates policy coverage, cross-references between related measures, and checks policy … - [NIS2 Supply Chain Security](https://rakenne.app/skills/nis2-supply-chain-security/index.md) — Assess and manage supply chain cybersecurity risks per NIS2 Art. 21(2)(d). Scores supplier criticality and cybersecurity maturity, validates contractual security clauses, and identifies concentration … - [NIST CSF Profile Author](https://rakenne.app/skills/nist-csf-profile-author/index.md) — Guided elaboration of a NIST Cybersecurity Framework (CSF) assessment: current profile (Identify, Protect, Detect, Respond, Recover, Govern), target profile, gap analysis, and prioritized … - [NIST SP 800-53 / CSF Crosswalk](https://rakenne.app/skills/nist-800-53-csf-crosswalk/index.md) — Bidirectional crosswalk between NIST Cybersecurity Framework (CSF) 2.0 subcategories and SP 800-53 Rev 5 controls. Maps CSF subcategories to 800-53 controls and vice versa, identifies gaps in either … - [PCI DSS Report on Compliance (ROC)](https://rakenne.app/skills/pci-dss-roc-author/index.md) — Author PCI DSS v4.0 ROC documentation for Level 1 QSA assessments: scope workpapers, requirement-by-requirement findings, Compensating Controls Worksheets (CCWs), Customized Approach Worksheets … - [PCI-DSS SAQ & Scope Author](https://rakenne.app/skills/pci-dss-saq-scope-author/index.md) — Guided elaboration of PCI-DSS scope documentation and SAQ support: cardholder data environment (CDE), network segmentation narrative, and control evidence mapping to SAQ requirements. - [SBOM Vulnerability Mapper](https://rakenne.app/skills/sbom-vulnerability-mapper/index.md) — Generate and validate a Software Bill of Materials (SBOM) and draft CRA-compliant technical documentation for connected products in the EU market. Checks software components against the NIST NVD for … - [SEC 10-K — MD&A and Financial Statement Notes Drafter](https://rakenne.app/skills/sec-10k-mda-notes-drafter/index.md) — Draft and validate the Management Discussion & Analysis (MD&A) section and key financial statement footnotes of the SEC Form 10-K annual report. Ensures compliance with Regulation S-K Items 303 (2021 … - [SecNumCloud — Dossier d'Homologation](https://rakenne.app/skills/secnumcloud-dossier-homologation/index.md) — Draft the Dossier d'Homologation for ANSSI SecNumCloud certification. Map infrastructure to the Référentiel, validate EEA data sovereignty for sub-processors, and structure evidence for France's … - [SOC 2 Control Narrative Author](https://rakenne.app/skills/soc2-control-narrative-author/index.md) — Guided elaboration of SOC 2 readiness documentation: control narratives aligned to AICPA Trust Services Criteria (Security, Availability, Processing Integrity, Confidentiality, Privacy), … - [Threat Impact Narrative Builder](https://rakenne.app/skills/threat-impact-narrative-builder/index.md) — Build and validate cybersecurity risk registers and impact narratives aligned to NIST CSF 2.0 ID.RA. Uses FAIR methodology for impact scenarios and enforces consistency between risk scores and … --- Back to [All Tags](https://rakenne.app/skill-tags/) | [Skill Library](https://rakenne.app/skills/)