Expert-level Information Security Management System (ISMS) auditing with comprehensive knowledge of ISO 27001, security audit methodologies, security control assessment, and cybersecurity compliance verification.
Works with
AI-first code editor with Composer
Before installing skills in Cursor, ensure your development environment meets these requirements:
node --versionisms-audit-expertExecute the skills CLI command in your project's root directory to begin installation:
Fetches isms-audit-expert from davila7/claude-code-templates and configures it for Cursor.
The CLI shows a list of agents. Use arrow keys and space to select Cursor:
Confirm successful installation by checking the skill directory location:
Restart Cursor to activate isms-audit-expert. Access via /isms-audit-expert in your agent's command palette.
We perform automated surface-level scans (Gen AI Scanner, Socket, Snyk) during installation. These checks detect common vulnerabilities but do not guarantee complete security. Always review skill source code and verify the publisher's reputation before production use.
Skills execute code in your environment. Always review source, verify the publisher, and test in isolation before production.
Submit your Claude Code skill and start earning
Create detailed user stories, acceptance criteria, and feature specs
Example
Generate user stories for 'password reset feature' with acceptance criteria, edge cases, and test scenarios
Reduce spec writing time by 50%, ensure comprehensive coverage
Research competitors, compare features, identify gaps
Example
Analyze 5 competitor products, create feature comparison matrix, suggest differentiation opportunities
Complete competitive research in 2 hours instead of 2 days
Evaluate features using frameworks (RICE, ICE, Kano) and create prioritized backlogs
Example
Score 20 feature ideas using RICE framework, generate prioritized roadmap with rationale
0
total installs
0
this week
24.2K
GitHub stars
0
upvotes
Run in your terminal
0
installs
0
this week
24.2K
stars
Expert-level Information Security Management System (ISMS) auditing with comprehensive knowledge of ISO 27001, security audit methodologies, security control assessment, and cybersecurity compliance verification.
Design and manage comprehensive ISMS audit programs ensuring systematic security evaluation and continuous improvement.
ISMS Audit Program Framework:
ISMS AUDIT PROGRAM MANAGEMENT
├── Security Audit Planning
│ ├── Risk-based audit scheduling
│ ├── Security domain scope definition
│ ├── Technical auditor competency
│ └── Security testing resource allocation
├── Audit Execution Coordination
│ ├── Technical security assessment
│ ├── Administrative control evaluation
│ ├── Physical security verification
│ └── Security documentation review
├── Security Finding Management
│ ├── Security gap identification
│ ├── Vulnerability assessment integration
│ ├── Risk-based finding prioritization
│ └── Security improvement recommendations
└── ISMS Audit Performance
├── Security audit effectiveness
├── Technical auditor development
├── Security methodology enhancement
└── Industry best practice adoption
Develop strategic security audit plans based on information security risks, threat landscape, and ISMS performance.
Security Audit Risk Assessment:
Information Security Risk Evaluation
Security Audit Scope Definition
Technical Security Testing Integration
Conduct systematic ISMS audits using proven methodologies ensuring comprehensive security assessment.
ISMS Audit Execution Process:
Security Audit Preparation
Security Audit Conduct
Security Audit Documentation
Conduct comprehensive security control assessments ensuring effective security implementation and operation.
Security Control Assessment Framework:
ISO 27002 CONTROL ASSESSMENT
├── Organizational Security Controls
│ ├── Information security policies
│ ├── Information security organization
│ ├── Human resource security
│ └── Asset management
├── Technical Security Controls
│ ├── Access control systems
│ ├── Cryptography implementation
│ ├── Systems security configuration
│ ├── Network security controls
│ ├── Application security measures
│ └── Secure development practices
├── Physical Security Controls
│ ├── Physical security perimeters
│ ├── Physical entry controls
│ ├── Equipment protection
│ └── Secure disposal procedures
└── Operational Security Controls
├── Operational procedures
├── Change management
├── Capacity management
├── System segregation
├── Malware protection
└── Backup and recovery
Integrate technical security assessments with ISMS auditing ensuring comprehensive security verification.
Technical Security Assessment:
Vulnerability Assessment Integration
Penetration Testing Coordination
Security Control Verification
Conduct specialized cybersecurity compliance audits addressing regulatory and industry requirements.
Cybersecurity Compliance Framework:
Assess cloud security implementations ensuring comprehensive cloud service security verification.
Cloud Security Audit Approach:
Cloud Service Provider Assessment
Cloud Configuration Assessment
Develop and maintain security auditor technical competency ensuring effective security assessment capabilities.
Security Auditor Competency Framework:
SECURITY AUDITOR COMPETENCY
├── Technical Security Knowledge
│ ├── Network security and protocols
│ ├── System security and hardening
│ ├── Application security and testing
│ ├── Cryptography and key management
│ └── Security architecture and design
├── Security Assessment Skills
│ ├── Vulnerability assessment techniques
│ ├── Penetration testing methodologies
│ ├── Security control testing
│ └── Risk assessment and analysis
├── Compliance and Standards
│ ├── ISO 27001/27002 expertise
│ ├── Regulatory requirement knowledge
│ ├── Industry standard familiarity
│ └── Audit methodology proficiency
└── Communication and Reporting
├── Technical finding documentation
├── Risk communication skills
├── Executive reporting capabilities
└── Stakeholder engagement
Maintain proficiency with security audit tools and technologies ensuring effective technical assessment.
Security Audit Tool Categories:
Prepare organization for ISO 27001 certification audits ensuring successful certification and maintenance.
Certification Audit Preparation:
Pre-certification Readiness
Certification Audit Coordination
Prepare organization for regulatory security inspections and compliance assessments.
Regulatory Inspection Coordination:
Monitor ISMS audit program effectiveness ensuring continuous security improvement and compliance.
Security Audit KPIs:
Continuously improve ISMS audit program through methodology enhancement and technology integration.
Audit Program Enhancement:
Security Audit Technology Integration
Security Audit Methodology Evolution
isms-audit-scheduler.py: Risk-based ISMS audit planning and schedulingsecurity-audit-prep.py: Security audit preparation and checklist automationsecurity-control-tester.py: Automated security control verification testingcompliance-reporting.py: ISO 27001 and regulatory compliance reportingiso27001-audit-methodology.md: Complete ISO 27001 audit framework and proceduressecurity-control-testing-guide.md: Technical security control assessment methodologiesexternal-pentest-guide.md: External penetration testing coordination and oversightcloud-security-audit-guide.md: Cloud service security assessment frameworksregulatory-security-compliance.md: Multi-jurisdictional security compliance requirementsisms-audit-templates/: ISMS audit plan, checklist, and report templatessecurity-testing-tools/: Security assessment and testing automation scriptscompliance-checklists/: ISO 27001 and regulatory compliance verification checkliststraining-materials/: Security auditor training and competency development programsMake data-driven prioritization decisions faster
Draft PRDs, status updates, and stakeholder presentations
Example
Create executive summary of Q3 roadmap, monthly progress report, feature launch announcement
Save 3-5 hours/week on communication overhead
Prerequisites
Time Estimate
30-60 minutes to see productivity improvements
Steps
Common Pitfalls
✓ Do
✗ Don't
💡 Pro Tips
✓ Use when
Use for user story writing, competitive research, roadmap prioritization, stakeholder communication, and PRD drafting. Best for reducing repetitive documentation and research work.
✗ Avoid when
Avoid for strategic product vision (requires deep customer empathy), pricing decisions (needs market and financial expertise), or when face-to-face customer discovery is more valuable than speed.
davila7/claude-code-templates
sickn33/antigravity-awesome-skills
erichowens/some_claude_skills
shadcn/improve
mattpocock/skills
parcadei/continuous-claude-v3
isms-audit-expert fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
isms-audit-expert reduced setup friction for our internal harness; good balance of opinion and flexibility.
Registry listing for isms-audit-expert matched our evaluation — installs cleanly and behaves as described in the markdown.
isms-audit-expert is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
Solid pick for teams standardizing on skills: isms-audit-expert is focused, and the summary matches what you get after install.
We added isms-audit-expert from the explainx registry; install was straightforward and the SKILL.md answered most questions upfront.
Solid pick for teams standardizing on skills: isms-audit-expert is focused, and the summary matches what you get after install.
isms-audit-expert is among the better-maintained entries we tried; worth keeping pinned for repeat workflows.
isms-audit-expert fits our agent workflows well — practical, well scoped, and easy to wire into existing repos.
I recommend isms-audit-expert for anyone iterating fast on agent tooling; clear intent and a small, reviewable surface area.
showing 1-10 of 54