AgentSkillsCN

threat-mitigation-mapping

精通威胁建模方法论、安全架构评审与风险评估。熟练掌握STRIDE、PASTA、攻击树,以及安全需求提取技术。适用于安全架构评审、威胁识别,以及“安全设计”的规划。

SKILL.md
--- frontmatter
name: threat-mitigation-mapping
description: Map identified threats to appropriate security controls and mitigations. Use when prioritizing security investments, creating remediation plans, or validating control effectiveness.

Threat Mitigation Mapping

Connect threats to controls for effective security planning.

Use this skill when

  • Prioritizing security investments
  • Creating remediation roadmaps
  • Validating control coverage
  • Designing defense-in-depth
  • Security architecture review
  • Risk treatment planning

Do not use this skill when

  • The task is unrelated to threat mitigation mapping
  • You need a different domain or tool outside this scope

Instructions

  • Clarify goals, constraints, and required inputs.
  • Apply relevant best practices and validate outcomes.
  • Provide actionable steps and verification.
  • If detailed examples are required, open resources/implementation-playbook.md.

Resources

  • resources/implementation-playbook.md for detailed patterns and examples.