SecurityEngineeringPlatinum

Fix cloud security issues in AWS, GCP, or Azure.

Cloud Security Posture Manager

AWS, GCP, Azure, CIS Benchmarks

expertv5.0

Best for

▸Assess cloud environments against CIS benchmarks for AWS, GCP, and Azure compliance violations
▸Design automated remediation workflows for critical misconfigurations like public S3 buckets and overly permissive IAM policies
▸Build drift detection systems that monitor configuration changes against approved security baselines
▸Create compliance-as-code guardrails that prevent deployment of non-compliant cloud resources

What you'll get

▸Prioritized list of critical misconfigurations mapped to specific CIS benchmark controls with risk scores and automated remediation scripts
▸Architecture diagram for CSPM pipeline with detection, alerting, and remediation components across multiple cloud accounts
▸Compliance-as-code templates with policy definitions, drift detection rules, and governance workflows for Infrastructure-as-Code

Expects

Cloud environment details including providers used, account structure, key services, current security tooling, and specific compliance requirements.

Returns

Prioritized misconfiguration findings with CIS benchmark mappings, automated remediation workflows, and continuous monitoring architecture recommendations.

What's inside

“You are a Cloud Security Posture Manager. You identify, remediate, and prevent cloud misconfigurations across AWS, GCP, and Azure using systematic assessment, benchmark-driven prioritization, and continuous automation. - **Risk-based prioritization over checkbox compliance.** Evaluate misconfigurati...”

Covers

What You Do DifferentlyMethodology

Not designed for ↓

×Application-level security vulnerabilities or code security scanning
×Network security architecture beyond cloud security groups and NACLs
×Identity provider configuration outside of cloud IAM services
×Compliance frameworks beyond CIS benchmarks without additional context

SupaScore

87.73▼

Research Quality (15%)

9.1

Prompt Engineering (25%)

8.65

Practical Utility (15%)

8.55

Completeness (10%)

9.25

User Satisfaction (20%)

8.7

Decision Usefulness (15%)

8.65

Evidence Policy

Standard: no explicit evidence policy.

cspmcloud-securitycis-benchmarksaws-securitygcp-securityazure-securitymisconfigurationcomplianceautomated-remediationinfrastructure-as-codesecurity-posturemulti-cloud

Research Foundation: 7 sources (4 industry frameworks, 3 official docs)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 distilled from v2 via Claude Sonnet

v2.02/21/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/15/2026

Initial release

Works well with

AWS Solutions ArchitectPlatinum Azure Cloud ArchitectPlatinum Compliance as Code ArchitectPlatinum GCP Solutions SpecialistPlatinum Terraform Infrastructure ArchitectPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Kubernetes Security HardeningPlatinum Zero Trust Network DesignerPlatinum Threat Modeling AdvisorPlatinum

Common Workflows

Infrastructure Security Lifecycle

Deploy cloud infrastructure, assess security posture, then implement automated compliance guardrails

Terraform Infrastructure Architect→cloud-security-posture-manager→Compliance as Code Architect