High-Level Cyber Risk Analysis

Modern businesses often struggle to translate messy assessment data into actionable security roadmaps. The Cyber Hygiene Assessment Skill is a professional-grade toolkit designed for developers and security consultants to automate the conversion of workshop notes, surveys, and technical evidence into boardroom-ready deliverables.

What it does

This skill processes raw cyber hygiene evidence—such as workshop transcripts or configuration logs—through a rigorous 12-domain control model. It generates structured outputs including Executive Scorecards, Treatment Plans, and Remediation Roadmaps using a standardised Red-Amber-Green (RAG) rating system.

• Standardised Framework: Covers 12 critical domains including MFA, Patching, and Path Management.
• Executive-Ready Reports: Automatically formats briefings that prioritise business impact over jargon.
• Evidence-Based Logic: Strictly follows built-in rules to ensure gaps are marked as 'Not Determined' rather than hallucinated.
• Specialised Models: Includes templates for Supplier Security and Finance Target Operating Models (TOM).

Why use this skill?

Prompting an AI manually often results in generic advice or "hallucinated" security configurations. This skill enforces a structured 19-step workflow and strict evidence-handling rules, ensuring that every finding is linked to specific evidence. It provides the heavy lifting for documentation, allowing you to focus on the actual security strategy.

Supported Deliverables

Output formats include professional Cyber Healthcheck Reports, Executive Risk Briefings, Supplier Security Registers, and Residual Risk Summaries.