iso-27001
Installation
SKILL.md
ISO 27001 Compliance Skill
Purpose
Ensures systems and processes comply with ISO 27001:2022 Information Security Management System (ISMS) requirements.
Rules
Key Controls for Web Applications
A.8.24 Use of Cryptography:
- TLS 1.2+ for all communications
- AES-256 for data at rest
- Secure key management
A.8.25 Secure Development Life Cycle:
- Security requirements in design
- Code review processes
- Security testing (SAST/DAST)