multi-cloud-security-posture

Solid

Unified cloud security posture management across AWS, Azure, and GCP with normalized metrics and CIS benchmark comparison

DevOps & Infrastructure 1,160 stars 71 forks Updated today MIT

Install

View on GitHub

Quality Score: 96/100

Stars 20%

100

Recency 20%

100

Frontmatter 20%

Documentation 15%

100

Issue Health 10%

License 10%

100

Description 5%

100

Skill Content

# Multi-Cloud Security Posture Skill ## Purpose Unified cloud security posture management (CSPM) across AWS, Azure, and GCP to aggregate findings, normalize security metrics, compare against CIS benchmarks, and provide a consolidated view of multi-cloud security. ## Capabilities ### Cross-Cloud Finding Aggregation - Collect findings from AWS, Azure, and GCP - Aggregate results from cloud-native security tools - Import findings from third-party CSPM tools - Deduplicate findings across environments - Correlate related issues across clouds ### Metric Normalization - Standardize severity ratings across clouds - Normalize finding categories - Create unified compliance metrics - Calculate aggregate risk scores - Generate comparable security ratings ### CIS Benchmark Comparison - Apply CIS benchmarks across all clouds - Compare security posture against benchmarks - Track benchmark compliance over time - Identify benchmark drift - Generate benchmark compliance reports ### Remediation Status Tracking - Track remediation across all clouds - Monitor fix verification status - Calculate mean time to remediate (MTTR) - Generate remediation progress reports - Prioritize cross-cloud remediation efforts ### Unified Reporting - Generate executive dashboards - Create technical detail reports - Produce compliance comparison matrices - Build trend analysis reports - Export data for external tools ### Drift Detection and Alerting - Monitor configuration drift - Alert on security posture d...

Details

Author: a5c-ai
Repository: a5c-ai/babysitter
Created: 4 months ago
Last Updated: today
Language: JavaScript
License: MIT

Integrates with

Google Cloud · Cloud

Similar Skills

Semantically similar based on skill content — not just same category

DevOps & Infrastructure Solid

cloud-security

Use when assessing cloud infrastructure for security misconfigurations, IAM privilege escalation paths, S3 public exposure, open security group rules, or IaC security gaps. Covers AWS, Azure, and GCP posture assessment with MITRE ATT&CK mapping.

16,782 Updated 3 days ago

alirezarezvani

DevOps & Infrastructure Featured

auditing-cloud-with-cis-benchmarks

This skill details how to conduct cloud security audits using Center for Internet Security benchmarks for AWS, Azure, and GCP. It covers interpreting CIS Foundations Benchmark controls, running automated assessments with tools like Prowler and ScoutSuite, remediating failed controls, and maintaining continuous compliance monitoring against CIS v5 for AWS, v4 for Azure, and v4 for GCP.

13,115 Updated today

mukul975

Testing & QA Solid

cloud-security-testing

Multi-cloud security assessment and penetration testing capabilities. Execute Prowler/ScoutSuite assessments, analyze IAM policies, identify cloud misconfigurations, test permissions, and enumerate cloud resources across AWS/GCP/Azure.

1,160 Updated today

a5c-ai

DevOps & Infrastructure Solid

cloud-penetration-testing

This skill should be used when the user asks to "perform cloud penetration testing", "assess Azure or AWS or GCP security", "enumerate cloud resources", "exploit cloud misconfigurations", "test O365 security", "extract secrets from cloud environments", or "audit cloud infrastructure". It provides comprehensive techniques for security assessment across major cloud platforms.

27,705 Updated today

davila7

DevOps & Infrastructure Solid

cloud-penetration-testing

4,222 Updated today

zebbern