Skip to main content

Isms Audit Expert

Skill Verified Active
Part of:Ra Qm Skills

Information Security Management System (ISMS) audit expert for ISO 27001 compliance verification, security control assessment, and certification support. Use when the user mentions ISO 27001, ISMS audit, Annex A controls, Statement of Applicability (SOA), gap analysis, nonconformity management, internal audit, surveillance audit, or security certification preparation. Helps review control implementation evidence, document audit findings, classify nonconformities, generate risk-based audit plans, map controls to Annex A requirements, prepare Stage 1 and Stage 2 audit documentation, and support corrective action workflows.

Purpose

To assist users in performing ISO 27001 audits by providing expert guidance, structured methodologies, and automated planning tools for Information Security Management Systems.

Features

  • ISO 27001 compliance verification
  • ISMS audit planning and scheduling
  • Security control assessment procedures
  • Finding management and classification
  • Certification audit support

Use Cases

  • Use when preparing for an ISO 27001 certification audit.
  • Use when conducting internal audits of an ISMS.
  • Use when assessing the effectiveness of security controls against Annex A.
  • Use when managing nonconformities and corrective actions.

Non-Goals

  • Performing the actual certification audit itself.
  • Providing legal interpretation of ISO 27001 standard.
  • Automating the implementation of security controls.

Installation

First, add the marketplace

/plugin marketplace add alirezarezvani/claude-skills
/plugin install ra-qm-team@claude-code-skills

Quality Score

Verified
98 /100
Analyzed about 17 hours ago

Trust Signals

Last commitabout 22 hours ago
GitHub owner alirezarezvani (opens in new tab)
Stars14.6k
LicenseMIT
Websitealirezarezvani.medium.com(opens in new tab)
Status
View Source

Similar Extensions

TradeMemory Protocol

100

Domain knowledge for the Evolution Engine — LLM-powered autonomous strategy discovery from raw OHLCV data. Covers the generate-backtest-select-evolve loop, vectorized backtesting, out-of-sample validation, and strategy graduation. Use when discovering trading patterns, running backtests, evolving strategies, or reviewing evolution logs. Triggers on "evolve", "discover patterns", "backtest", "evolution", "strategy generation", "candidate strategy".

Skill
mnemox-ai

Gdpr Dsgvo Expert

100

GDPR and German DSGVO compliance automation. Scans codebases for privacy risks, generates DPIA documentation, tracks data subject rights requests. Use for GDPR compliance assessments, privacy audits, data protection planning, DPIA generation, and data subject rights management.

Skill
alirezarezvani

Ship Gate

100

Pre-production audit that scans a codebase for security, database, deployment, code quality, AI/LLM, dependency, frontend, and observability issues. Intercepts deploy commands and blocks until critical items pass. Stack-agnostic. Use for "run ship gate", "am I ready to ship", "pre-launch audit", "can I deploy", "push to production", "go live checklist", "preflight check". Not for CI/CD setup or infra provisioning.

Skill
alirezarezvani

Context Mode Ops

100

Manage context-mode GitHub issues, PRs, releases, and marketing with parallel subagent army. Orchestrates 10-20 dynamic agents per task. Use when triaging issues, reviewing PRs, releasing versions, writing LinkedIn posts, announcing releases, fixing bugs, merging contributions, validating ENV vars, testing adapters, or syncing branches.

Skill
mksglu

Refactor Plan

100

Prioritized redesign action plan covering quick wins, medium effort, major rework

Skill
Aboudjem

Type Audit

100

Typography-only audit covering font selection, type scale, readability, hierarchy, performance

Skill
Aboudjem

© 2025 SkillRepo · Find the right skill, skip the noise.