Security Policy Generator

What it does

The security-policy-generator skill creates draft security policies based on provided requirements. It can generate policies for various contexts, including cloud environments and software development lifecycles. The generated policies are intended to be a starting point that requires review and customization by security professionals.

When to use it

• Generating initial drafts of security policies for new projects or organizations.
• Creating baseline security policies for cloud infrastructure deployments (e.g., AWS, Azure, GCP).
• Developing security policy templates for software development teams adhering to specific compliance standards.
• Quickly outlining security controls based on high-level requirements and desired outcomes.

Key capabilities

• Policy generation from requirements
• Support for various contexts (cloud, software development)
• Drafting starting points for security professionals

Example prompts

• "Generate a draft cloud security policy for an AWS environment focusing on data encryption."
• "Create a baseline security policy template for a software development team following OWASP guidelines."
• "Draft a security policy outlining access control requirements for sensitive customer data."

Tips & gotchas

The generated policies are drafts and require review by qualified security professionals. Always customize the output to align with your organization's specific needs, risk tolerance, and legal obligations.