cybersecurity-breach-summary
Produces structured cybersecurity breach summary documents for regulatory and compliance use. Use when drafting breach summaries, incident response reports, forensic report syntheses, board updates, or regulatory notification prep. Triggers: data breach, cybersecurity incident, breach summary, incident report, forensic analysis, notification timeline, GDPR, CCPA/CPRA, HIPAA, state breach law.
Best use case
cybersecurity-breach-summary is best used when you need a repeatable AI agent workflow instead of a one-off prompt.
Produces structured cybersecurity breach summary documents for regulatory and compliance use. Use when drafting breach summaries, incident response reports, forensic report syntheses, board updates, or regulatory notification prep. Triggers: data breach, cybersecurity incident, breach summary, incident report, forensic analysis, notification timeline, GDPR, CCPA/CPRA, HIPAA, state breach law.
Teams using cybersecurity-breach-summary should expect a more consistent output, faster repeated execution, less prompt rewriting.
When to use this skill
- You want a reusable workflow that can be run more than once with consistent structure.
When not to use this skill
- You only need a quick one-off answer and do not need a reusable workflow.
- You cannot install or maintain the underlying files, dependencies, or repository context.
Installation
Claude Code / Cursor / Codex
Manual Installation
- Download SKILL.md from GitHub
- Place it in
.claude/skills/cybersecurity-breach-summary/SKILL.mdinside your project - Restart your AI agent — it will auto-discover the skill
How cybersecurity-breach-summary Compares
| Feature / Agent | cybersecurity-breach-summary | Standard Approach |
|---|---|---|
| Platform Support | Not specified | Limited / Varies |
| Context Awareness | High | Baseline |
| Installation Complexity | Unknown | N/A |
Frequently Asked Questions
What does this skill do?
Produces structured cybersecurity breach summary documents for regulatory and compliance use. Use when drafting breach summaries, incident response reports, forensic report syntheses, board updates, or regulatory notification prep. Triggers: data breach, cybersecurity incident, breach summary, incident report, forensic analysis, notification timeline, GDPR, CCPA/CPRA, HIPAA, state breach law.
Where can I find the source code?
You can find the source code on GitHub using the link provided at the top of the page.
SKILL.md Source
# Cybersecurity Breach Summary Legally defensible, source-attributed incident summary for executive, counsel, and regulator review. ## Quick Start 1. Gather incident reports, forensic analyses, system logs, and response documentation. 2. Confirm privilege boundaries and confidentiality flags from counsel. 3. Populate the template below with verified facts only — attribute each assertion to a source and date. 4. Separate known facts from hypotheses or open questions. ## Template ```` # Executive Overview - Discovery date/time (timezone): - Incident window (earliest to latest evidence): - Incident type / attack vector: - Affected systems: - Data categories involved: - Estimated affected individuals: - Current status (contained/ongoing): - Immediate actions taken: - Material business impact: # Incident Timeline | Date/Time (TZ) | Event | Source (doc + date) | Owner | Confidence | |---|---|---|---|---| # Technical Summary - Initial access vector: - Vulnerability or control failure: - Lateral movement / persistence: - Exfiltration evidence: - Integrity/availability impacts: # Systems Affected | System/App | Environment | Data Stored | Impact | Status | Source | |---|---|---|---|---|---| # Data Impact | Data Category | Regulated? | Population Type | Est. Count | Jurisdictions | Source | |---|---|---|---|---|---| # Affected Population | Population | Est. Count | Jurisdictions | Notes | |---|---|---|---| # Response Actions | Action | Date | Owner | Status | Source | |---|---|---|---|---| # Notifications | Recipient | Legal Basis | Deadline | Sent Date | Method | Summary | Source | |---|---|---|---|---|---|---| # Legal/Regulatory Assessment | Regime | Trigger | Deadline Rule | Status | Notes | |---|---|---|---|---| | GDPR Art. 33/34 [VERIFY] | | | | | | HIPAA (45 CFR 164.400–414) [VERIFY] | | | | | | CCPA/CPRA [VERIFY] | | | | | | State breach laws (list states) | | | | | # Contractual / Litigation Exposure - Contracts with notice obligations: - SLAs or security addenda implicated: - Potential claims and venues: - Preservation actions taken: # Insurance - Carrier/policy: - Notice sent (date/time): - Coverage issues or reservations: # Open Issues - # Remediation | Gap/Root Cause | Corrective Action | Owner | Due Date | Status | |---|---|---|---|---| # Source Map | Fact | Source Document | Date | Page/Section | |---|---|---|---| ```` ## Pitfalls - **Speculation**: Label unknowns explicitly. Do not opine on liability — describe exposure factors only. - **Timezone drift**: Use consistent date/time with timezone; maintain a single chronological basis. - **Jurisdiction scope**: List all jurisdictions implicated by affected individuals, not just HQ location. - **Unverified citations**: Mark uncertain legal citations or deadlines with `[VERIFY]`. - **Privilege leaks**: Keep privileged content in clearly marked sections per counsel direction. - **Vague counts**: Use ranges when scope is uncertain and explain the estimation basis.
Related Skills
managing-privacy-breach-response
Guides HIPAA breach investigation with risk assessment, notification requirements, and remediation documentation. Use when managing data breaches, assessing breach risk, or documenting breach response.
managing-cybersecurity-healthcare
Structures healthcare cybersecurity programs with PHI protection, incident response, and risk assessment. Use when managing healthcare cybersecurity, protecting health data, or conducting security risk assessments.
witness-summary
Generates structured summaries of witness statements for litigation, extracting chronological narratives, key facts, credibility indicators, and evidentiary value. Use when summarizing depositions, declarations, affidavits, or witness testimony during discovery, pre-trial, or trial preparation.
verdict-judgment-summary
Produces structured post-trial verdict and judgment analysis memoranda for commercial litigation. Triggers when summarizing a jury verdict, bench trial decision, post-trial motion assessment, or appellate viability review. Covers liability determinations, damages breakdowns, critical rulings, and post-trial strategy.
urban-planning-summary
Summarizes legal issues in urban development projects covering zoning, land use disputes, and environmental compliance. Generates structured briefings for municipalities, developers, and legal counsel. Use when reviewing zoning ordinances, land use applications, environmental impact statements, or comprehensive plans before development or planning decisions.
trial-prep-summary
Generates a structured courtroom-ready trial preparation summary synthesizing procedural history, facts, legal issues, evidence, witnesses, and strategy into a quick-reference document. Trigger when preparing trial binders, pre-trial review documents, courtroom reference materials, or trial strategy memos in commercial litigation.
traffic-enforcement-summary
Generates structured summaries of traffic law enforcement data covering DUI metrics, violation trends, enforcement outcomes, and resource allocation. Use when analyzing citation records, arrest statistics, violation reports, or preparing public safety strategic planning documents for law enforcement leadership.
trade-law-summary
Produces structured U.S.-focused international trade law summaries covering tariffs, customs, export controls, sanctions, trade remedies, and trade agreements. Triggers when asked for international trade law summaries, tariff/customs analysis, export controls, sanctions guidance, WTO/GATT, USMCA, ITAR, EAR, OFAC, or import/export compliance updates.
telecom-law-summary
Generates executive-level summaries of recent US telecommunications law developments covering spectrum rights, network access, privacy, infrastructure, and enforcement. Structures analysis by topic with compliance deadlines and business impact. Use when briefing counsel, regulatory teams, or executives on FCC rulemakings, net neutrality, CPNI, 5G deployment, robocall enforcement, or the broader telecom legal landscape.
tax-summary-spousal-support
Produces structured financial summaries from tax returns, W-2s, 1099s, K-1s, and business filings for spousal support proceedings. Trigger when preparing income analyses for alimony discovery, settlement negotiations, pre-trial, or court filings in family law matters.
tax-return-summary
Produces structured, citation-backed summaries of tax returns (Form 1040, schedules, W-2s, 1099s) for divorce, personal injury, and bankruptcy litigation. Extracts income sources, deductions, credits, and flags anomalies. Use when summarizing tax returns, analyzing financial discovery, assessing earning capacity, reviewing 1040s, or preparing financial profiles for litigation.
summary-judgment
Produces structured summaries of summary judgment motions, orders, and decisions. Use when the user needs to summarize an MSJ ruling, prepare a case status report, evaluate appeal posture, or brief a client on a dispositive motion outcome.