iso-27001
ISO 27001 Compliance Skill
Purpose
Ensures systems and processes comply with ISO 27001:2022 Information Security Management System (ISMS) requirements.
Rules
Key Controls for Web Applications
A.8.24 Use of Cryptography:
- TLS 1.2+ for all communications
- AES-256 for data at rest
- Secure key management
A.8.25 Secure Development Life Cycle:
- Security requirements in design
- Code review processes
- Security testing (SAST/DAST)
More from hack23/homepage
github-actions-cicd
GitHub Actions workflow structure, security scanning integration (CodeQL, ZAP), Lighthouse audits, minification, and deployment automation
107html-css-best-practices
Semantic HTML5, CSS custom properties, responsive design, and performance optimization for web development
90agentic-workflow-orchestration
Multi-agent coordination, orchestrator-worker patterns, /plan decomposition, and project coordination for GitHub Agentic Workflows
60product-documentation
Product documentation standards covering user guides, feature documentation, release notes, and end-user communication
51c4-modeling
C4 model (Context, Container, Component, Code) diagram patterns with Mermaid syntax for architecture documentation
32aws-s3-cloudfront
AWS S3 bucket configuration, CloudFront distribution setup, security headers (CSP, HSTS), cache policies, and SSL/TLS configuration
31