GitHub
Skills harvested from GitHub repositories
14810 skills availableimplementing-iec-62443-security-zones
When designing a greenfield OT network architecture for a new industrial facility When retrofitting security zones into ...
implementing-identity-verification-for-zero-trust
Understanding of zero trust principles (NIST SP 800-207) Familiarity with identity providers (Azure AD, Okta, Ping Ident...
implementing-identity-governance-with-sailpoint
Deploy SailPoint IdentityNow or IdentityIQ for identity governance and administration. Covers identity lifecycle managem...
implementing-ics-firewall-with-tofino
When deploying zone-level firewall protection directly in front of critical PLCs or RTUs When requiring deep packet insp...
implementing-honeytokens-for-breach-detection
When deploying or configuring implementing honeytokens for breach detection capabilities in your environment When establ...
implementing-hashicorp-vault-dynamic-secrets
Applications use static database credentials stored in configuration files or environment variables AWS IAM access keys ...
implementing-google-workspace-sso-configuration
Single Sign-On (SSO) for Google Workspace allows organizations to authenticate users through their existing identity pro...
implementing-google-workspace-admin-security
Deploying or hardening a Google Workspace environment for enterprise use CIS benchmark compliance assessment for Google ...
implementing-gdpr-data-protection-controls
The General Data Protection Regulation (EU) 2016/679 (GDPR) is the EU's comprehensive data protection law governing the ...
implementing-gcp-organization-policy-constraints
The GCP Organization Policy Service provides centralized and programmatic control over cloud resources. Organization pol...
implementing-gcp-binary-authorization
Binary Authorization is a Google Cloud deploy-time security control that ensures only trusted container images are deplo...
implementing-file-integrity-monitoring-with-aide
AIDE (Advanced Intrusion Detection Environment) is a host-based intrusion detection system that monitors file and direct...
implementing-endpoint-detection-with-wazuh
Wazuh is an open-source SIEM and XDR platform for endpoint monitoring, threat detection, and compliance. This skill cove...
implementing-email-sandboxing-with-proofpoint
Email sandboxing detonates suspicious attachments and URLs in isolated environments to detect zero-day malware and evasi...
implementing-dragos-platform-for-ot-monitoring
When deploying an OT-specific network detection and response (NDR) solution for industrial environments When needing thr...
implementing-devsecops-security-scanning
Setting up automated security scanning in a new or existing CI/CD pipeline Shifting security left by catching vulnerabil...
implementing-delinea-secret-server-for-pam
Organization needs centralized privileged credential management across hybrid infrastructure Compliance requirements man...
implementing-ddos-mitigation-with-cloudflare
Cloudflare provides multi-layer DDoS protection across its global network of over 300 data centers with 477+ Tbps of cap...
implementing-data-loss-prevention-with-microsoft-purview
Deploying DLP policies to prevent sensitive data (PII, PHI, PCI, intellectual property) from leaving the organization th...
implementing-continuous-security-validation-with-bas
Breach and Attack Simulation (BAS) is an automated, continuous approach to validating security control effectiveness by ...
implementing-container-image-minimal-base-with-distroless
Google distroless images contain only your application and its runtime dependencies, without package managers, shells, o...
implementing-conduit-security-for-ot-remote-access
When replacing direct VPN connections from IT or vendors into OT control networks When implementing IEC 62443-compliant ...
implementing-cloud-vulnerability-posture-management
Cloud Security Posture Management (CSPM) continuously monitors cloud infrastructure for misconfigurations, compliance vi...
implementing-azure-defender-for-cloud
When enabling comprehensive security monitoring across Azure subscriptions When implementing cloud workload protection f...