iam-audit
Installation
SKILL.md
IAM Audit — Identity & Access Management Review and Design
Cover the identity and access layer end-to-end: audit existing setup, design from scratch, plan migrations, and codify the patterns most teams get wrong. This is the consultant-style skill — not just "what's misconfigured" but "what should this look like."
Three modes — pick the one that matches the engagement:
- Audit — review what's already deployed, find privilege creep and gaps
- Design — greenfield IAM for a new project or new identity provider
- Migrate — consolidate multiple identity providers, federate access, move to SSO
Cross-references: cloud-audit for the cloud-provider audit (broader than IAM), container-audit for K8s RBAC and ServiceAccounts (orchestration-layer identity).