بنقرة واحدة
cia
يحتوي cia على 80 من skills المجمعة من Hack23، مع تغطية مهنية على مستوى المستودع وصفحات skill داخل الموقع.
Skills في هذا المستودع
Identity and access management: RBAC, least privilege, MFA, quarterly reviews per ISO 27001 A.5.15, A.8.2, A.8.3
Business continuity and disaster recovery: 30-day retention, quarterly restore tests, RTO/RPO targets per ISO 27001 A.17
Political psychology, cognitive biases, group dynamics, leadership analysis, decision-making patterns for Swedish political intelligence
Risk-based data and asset classification framework: PUBLIC, INTERNAL, CONFIDENTIAL, RESTRICTED aligned with ISO 27001 A.5.12 and CIA triad
Unified compliance verification across ISO 27001, NIST CSF, CIS Controls, NIS2, EU CRA, GDPR, SOC 2, PCI DSS, and HIPAA for cybersecurity consulting
Cryptographic controls implementation: TLS 1.3, AES-256-GCM, bcrypt, RSA-4096, key management per NIST FIPS 140-2 and ISO 27001 A.8.24
Security incident detection, analysis, containment, eradication, recovery, and lessons learned per NIST SP 800-61r2 and ISO 27035
AI-enabled security excellence through transparent ISMS implementation, defense-in-depth, and strategic planning aligned with Hack23 business model
Structured analytic techniques including ACH, SWOT, Devil's Advocacy, Red Team analysis for political intelligence
Voting pattern analysis, committee effectiveness, bill tracking, parliamentary oversight for Swedish intelligence operations
Open source governance, security posture badges, license compliance, SBOM generation, and vulnerability management for transparency-driven development
OSINT collection, source evaluation, data integration, verification techniques for Swedish political intelligence
Political risk indicators, institutional risk, corruption risk, democratic backsliding, early warning systems for Swedish political intelligence
Systematic risk identification, analysis, evaluation, and treatment aligned with ISO 27005, NIST RMF, and Hack23 ISMS risk register
Narrative framing, media analysis, discourse analysis, influence assessment, information warfare detection for Swedish political intelligence
Swedish Riksdag structure, 8 parties, electoral system, government formation, coalition patterns, political culture
Systematic vulnerability lifecycle management with SLAs: Critical 7d, High 30d, Medium 90d, Low 180d aligned with OWASP, NIST, CIS Controls
Hack23 Information Security Policy integration for SDLC — developer-facing mapping of ISP requirements to daily engineering activities, tooling, and evidence
Create secure CI/CD workflows with GitHub Actions for Java 26/Maven/PostgreSQL builds, security scans, and deployments
Master GitHub Agentic Workflows (gh-aw) - AI-powered repository automation with safe outputs, sandboxed execution, and multi-engine support
Implement Spring Framework integration tests with TestContainers, Spring Test, and database fixtures
Advanced chart types, D3.js/Vaadin Charts patterns, political data visualization, time series analysis
AI governance, EU AI Act compliance, OWASP LLM security, responsible AI practices for GitHub Copilot agents
External API integration patterns, retry logic, circuit breakers, caching, rate limiting for government data APIs
AWS security best practices, VPC security, IAM, KMS, CloudTrail, GuardDuty for CIA platform deployment
CI/CD pipeline security, supply chain security, SLSA compliance, artifact signing, dependency scanning
Citizen Intelligence Agency data model integration, riksdag data processing, political entity mapping
Data classification enforcement, sensitivity labeling, and handling controls per classification level for the CIA platform
Cross-framework compliance alignment and control mapping between ISO 27001, NIST CSF, CIS Controls, and GDPR
Multi-framework compliance (ISO 27001, NIST CSF, CIS Controls, GDPR, NIS2, EU CRA, SOC 2), control mapping
Data pipeline design, ETL processes, Spring Integration patterns, batch processing for political data
Data classification (CIA triad), GDPR privacy by design, encryption standards, data lifecycle management
EU Parliament open data API integration, MEP data, voting records, committee data for cross-parliament analysis
Hack23 organization architecture documentation standards, C4 model requirements, future state planning
Hack23 ISMS organization-wide compliance requirements, policy enforcement, audit preparation
MCP gateway setup for multi-server integration, security configuration, tool routing, and access control
MCP gateway security patterns, token management, request validation, and audit logging for MCP communications
Model Context Protocol server development, MCP tool patterns, MCP configuration best practices, GitHub MCP integration
Application performance tuning, JVM optimization, database query tuning, Vaadin UI performance
Product quality metrics, SonarCloud analysis, technical debt management, code quality gates