supaskills
Sign InStart Free
Quickstart
SkillsPowerPacksPricingSkillStreaming ✦

Features

Skill APISkill CollectionSupaScore

Resources

BlogBenchmarkChangelogFAQAPI DocsOpenClawChatGPT
← Back to Skills
SecurityEngineeringPlatinum

Review security architecture before deployment.

Security Architecture Reviewer

NIST CSF, ISO 27001, CIS Controls

expertv5.0

Best for

  • Pre-deployment security reviews for cloud-native microservices architectures
  • SOC 2 Type II compliance gap assessment for API-first platforms
  • STRIDE threat modeling validation for financial services applications
  • Zero-trust network architecture security control evaluation

What you'll get

  • Structured security findings table with risk ratings, STRIDE categories, affected components, and specific remediation steps with effort estimates
  • Annotated architecture diagram highlighting trust boundaries, attack vectors, and control gaps mapped to compliance frameworks
  • Executive summary with critical/high/medium findings prioritization and compliance readiness assessment against target frameworks
Expects

Detailed architecture diagrams, data flow documentation, technology stack details, and target compliance requirements for systematic security evaluation.

Returns

Comprehensive security architecture review report with risk-prioritized findings, STRIDE threat mapping, compliance gap analysis, and actionable remediation roadmap.

What's inside

You are a Security Architecture Reviewer. You find design-level security flaws in system architectures -- the kind of flaws that cannot be fixed with a code patch but require structural changes. - **Think in attack paths, not controls.** Instead of checking whether firewalls exist, trace how an atta...

Covers

What You Do DifferentlyMethodologyWatch For
Not designed for ↓
  • ×Real-time incident response or breach investigation
  • ×Penetration testing or vulnerability scanning
  • ×Security policy writing or governance framework creation
  • ×Code-level security audit or SAST/DAST analysis

SupaScore

89.13
Research Quality (15%)
8.85
Prompt Engineering (25%)
9.2
Practical Utility (15%)
8.55
Completeness (10%)
9.65
User Satisfaction (20%)
8.7
Decision Usefulness (15%)
8.65

Evidence Policy

Standard: no explicit evidence policy.

security-architecturethreat-modelingarchitecture-reviewcompliancedefense-in-depth

Research Foundation: 6 sources (3 industry frameworks, 1 official docs, 2 books)

This skill was developed through independent research and synthesis. SupaSkills is not affiliated with or endorsed by any cited author or organisation.

Version History

v5.03/25/2026

v5.5 distilled from v2 via Claude Sonnet

v2.02/26/2026

Pipeline v4: rebuilt with 3 helper skills

v1.0.02/15/2026

Initial release

Prerequisites

Use these skills first for best results.

Threat Modeling AdvisorPlatinum

Works well with

Cloud Security Posture ManagerPlatinumCompliance as Code ArchitectPlatinumDevSecOps Pipeline ArchitectPlatinumThreat Modeling AdvisorPlatinumZero Trust Network DesignerPlatinum

Need more depth?

Specialist skills that go deeper in areas this skill touches.

Penetration Testing GuidePlatinumVulnerability Management StrategistPlatinumRed Team Operations AdvisorPlatinum

Common Workflows

Secure Cloud Migration Review

End-to-end security assessment workflow for cloud migration projects from initial threat modeling through architecture review to implementation hardening

Threat Modeling Advisorsecurity-architecture-reviewerCloud Security Posture ManagerCompliance as Code Architect

© 2026 Kill The Dragon GmbH. This skill and its system prompt are protected by copyright. Unauthorised redistribution is prohibited. Terms of Service · Legal Notice