Works with the AI tools you already use

    CCCGGVW

    Incident Lessons Learned Review

    by LocoLoboZ

    1

    Convert cyber incident evidence into blameless post-mortem reports, root cause analyses, and action trackers.

    $10

    · or 50 credits

    30-day refund guarantee

    Secure checkout via Stripe

    About this skill

    Professional Defensive Post-Incident Reviews

    Transform chaotic incident data into structured, actionable intelligence. This skill facilitates deep-dive lessons learned sessions following cyber security incidents, near misses, or tabletop exercises. It moves beyond simple summarization, applying rigorous analysis methods to improve your organization's security posture.

    What it does

    • Evidence Synthesis: Consolidates incident timelines, logs, and stakeholder inputs into a single source of truth.
    • Blameless Analysis: Conducts root cause analysis (RCA) using 5-Whys or Fishbone methods, focusing on systemic improvements rather than individual fault.
    • Metric Generation: Calculates key performance indicators like MTTR and MTTC based on provided timestamps.
    • Actionable Outputs: Generates executive summaries, playbook update plans, and tracked action items with clear owners and validation criteria.

    Why use this skill

    Standard AI prompting often yields generic retrospective advice. This skill enforces strict defensive IR standards, ensuring outputs are evidence-based, tool-agnostic (unless specified), and audit-ready. It bridges the gap between technical recovery and executive reporting, ensuring that "lessons learned" actually result in updated playbooks and detection logic.

    Details

    How to install

    Drop the file into your AI Agent. Works with Claude, Cursor, ChatGPT, and 20+ more.

    Security Scanned

    Passed automated security review

    Permissions

    Terminal / Shell

    Allowed Hosts

    csrc.nist.gov
    attack.mitre.org
    veriscommunity.net

    File Scopes

    incident-lessons-learned-review/**

    Creator

    I design and publish skills built from real professional practice across three areas: cyber security consulting, business operations, and AI workflow engineering. My cyber security skills draw on active advisory work spanning governance, risk, compliance, assurance, and executive reporting. They are built for practitioners who need structured, defensible outputs - not generic templates. My business operations skills cover the day-to-day work of running a consulting practice: bookkeeping, financial tracking, expense reconciliation, and marketing content - designed to reduce repetitive overhead and keep outputs consistent. My AI platform and workflow skills are built for people who want to get more out of Claude and similar platforms - covering prompt engineering, skill architecture, automation pipelines, and agent enhancement. Every skill I publish has been tested in production use before it reaches the marketplace. If it is here, it works.

    Frequently Asked Questions

    More Premium Skills