arckit-cli 6.1.1__py3-none-any.whl
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- arckit_cli/__init__.py +1120 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/memory/sessions.md +293 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/RENDERING.md +22 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uae.md +20 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/_partials/document-control-uk.md +16 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adm-preliminary-template.md +135 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/adr-template.md +588 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-design-template.md +390 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-governance-template.md +90 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-integration-template.md +159 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-inventory-template.md +108 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-maturity-template.md +388 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/agent-security-template.md +213 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/analysis-report-template.md +323 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/application-inventory-template.md +221 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-board-template.md +194 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-change-template.md +205 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-diagram-template.md +610 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-principles-template.md +632 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-repository-template.md +107 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/architecture-strategy-template.md +666 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-bvergg-template.md +252 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-dsgvo-template.md +354 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/at-nisg-template.md +236 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-aescsf-template.md +189 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ai-assurance-template.md +243 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-disp-attestation-template.md +297 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-dss-template.md +302 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-e8-posture-template.md +377 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-energy-compliance-template.md +189 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ism-controls-template.md +462 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ndb-playbook-template.md +288 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-ot-security-template.md +204 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pia-template.md +394 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-pspf-template.md +380 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/au-soci-cirmp-template.md +206 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/aws-research-template.md +605 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/azure-research-template.md +559 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/backlog-template.md +465 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-aia-template.md +206 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-atip-template.md +192 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-charter-template.md +190 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-cloud-residency-template.md +173 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-fitaa-template.md +156 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-gc-digital-standards-template.md +208 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-itsg-33-template.md +228 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ocap-template.md +205 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-ola-template.md +171 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pia-template.md +193 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-pspc-template.md +214 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ca-soia-template.md +219 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/capability-map-template.md +125 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/competitors-template.md +113 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/conformance-assessment-template.md +507 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-mesh-contract-template.md +851 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-model-template.md +1043 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/data-source-profile-template.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/datascout-template.md +546 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/devops-template.md +961 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dfd-template.md +161 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dld-review-template.md +427 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dos-requirements-template.md +506 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/dpia-template.md +1200 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-ai-act-template.md +227 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-cra-template.md +176 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-data-act-template.md +175 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dora-template.md +197 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-dsa-template.md +183 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-nis2-template.md +196 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/eu-rgpd-template.md +198 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/evaluation-criteria-template.md +719 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/finops-template.md +662 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-algorithme-public-template.md +162 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-carto-template.md +196 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-anssi-template.md +190 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-code-reuse-template.md +190 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dinum-template.md +195 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-dr-template.md +187 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-ebios-template.md +209 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-irn-template.md +311 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-marche-public-template.md +178 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-pssi-template.md +270 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-rgpd-template.md +195 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/fr-secnumcloud-template.md +188 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/framework-overview-template.md +247 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gap-analysis-template.md +198 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-clarify-template.md +340 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcloud-requirements-template.md +370 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gcp-research-template.md +585 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/glossary-template.md +117 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-code-search-template.md +213 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-landscape-template.md +271 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/gov-reuse-template.md +214 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/grants-template.md +131 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/hld-review-template.md +760 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/jsp-936-template.md +1394 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/maturity-model-template.md +297 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mlops-template.md +720 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/mod-secure-by-design-template.md +784 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/operationalize-template.md +1016 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/pages-template.html +5121 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/platform-design-template.md +1610 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/presentation-template.md +270 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/principles-compliance-assessment-template.md +389 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/project-plan-template.md +421 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/rationalization-template.md +208 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/requirements-template.md +1026 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/research-findings-template.md +939 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/risk-register-template.md +883 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/roadmap-template.md +787 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/service-assessment-prep-template.md +448 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/servicenow-design-template.md +273 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sobc-template.md +1127 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/sow-template.md +785 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/stakeholder-drivers-template.md +493 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/story-template.md +889 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tcop-review-template.md +593 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tech-note-template.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/tenders-template.md +124 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/traceability-matrix-template.md +360 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/transition-architecture-template.md +286 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-autonomy-tier-template.md +97 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ai-charter-template.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-classification-template.md +86 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-cloud-residency-template.md +136 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-data-sharing-template.md +105 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-digital-records-template.md +97 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-ias-template.md +109 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-pdpl-template.md +105 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-priorities-alignment-template.md +99 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-procurement-template.md +115 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-uaepass-template.md +129 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uae-zero-bureaucracy-template.md +85 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-board-report-template.md +49 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-consumer-duty-template.md +362 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-register-template.md +24 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-ctp-dependency-template.md +321 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-reconciliation-template.md +77 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-safeguarding-template.md +348 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-exemption-matrix-template.md +47 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-fs-sca-rts-template.md +273 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-ai-playbook-template.md +942 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-gov-atrs-template.md +1087 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-mdr-classification-template.md +307 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-case-template.md +214 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-hazard-template.md +217 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-safety-template.md +78 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0129-template.md +13 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-case-template.md +207 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-hazard-template.md +290 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-deployment-safety-template.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dcb0160-template.md +13 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/uk-nhs-dtac-template.md +341 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/ukgov-secure-by-design-template.md +1031 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-impact-template.md +212 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-ai-rmf-template.md +232 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-readiness-template.md +209 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fedramp-ssp-template.md +352 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-fisma-categorization-template.md +145 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-icam-template.md +216 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-nist-800-53-template.md +222 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-privacy-pia-template.md +191 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-sbom-eo-14028-template.md +253 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/us-zero-trust-template.md +234 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-profile-template.md +88 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/vendor-scoring-template.md +332 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-climate-template.md +269 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-doctrine-template.md +299 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-gameplay-template.md +346 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-map-template.md +587 -0
- arckit_cli-6.1.1.data/data/share/arckit/.arckit/templates/wardley-value-chain-template.md +256 -0
- arckit_cli-6.1.1.data/data/share/arckit/CHANGELOG.md +3554 -0
- arckit_cli-6.1.1.data/data/share/arckit/VERSION +1 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/DEPENDENCY-MATRIX.md +929 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/README.md +322 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/WORKFLOW-DIAGRAMS.md +1088 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adm-preliminary.md +72 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/adr.md +60 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-design.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-governance.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-integration.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-inventory.md +60 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-maturity.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/agent-security.md +63 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ai-playbook.md +103 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/analyze.md +57 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-inventory.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/application-rationalization.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-board.md +60 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-change.md +73 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/architecture-repository.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/artifact-health.md +228 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-bvergg.md +86 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-dsgvo.md +75 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/at-nisg.md +94 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/atrs.md +98 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-aescsf.md +45 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ai-assurance.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-disp-attestation.md +90 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-dss.md +76 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-e8-posture.md +73 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-energy-compliance.md +47 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-federal-overlay.md +199 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ism-controls.md +78 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ndb-playbook.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-ot-security.md +39 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pia.md +72 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-pspf.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/au-soci-cirmp.md +40 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/autoresearch.md +334 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/aws-research.md +160 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/azure-research.md +157 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/backlog.md +58 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/build.md +132 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-capability-map.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/business-case.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/c4-layout-science.md +280 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-aia.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-atip.md +79 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-charter.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-cloud-residency.md +91 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-fitaa.md +81 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-gc-digital-standards.md +93 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-itsg-33.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ocap.md +91 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-ola.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pia.md +83 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-pspc.md +96 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/ca-soia.md +87 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/codes-of-practice.md +154 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/competitors.md +202 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/conformance.md +153 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/create.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/custom-commands.md +236 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/customize.md +108 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-mesh-contract.md +239 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-model.md +69 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/data-quality-framework.md +118 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/datascout.md +162 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/declaration.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/design-review.md +66 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/devops.md +96 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dfd.md +187 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/diagram.md +118 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dld-review.md +102 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dos.md +109 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/dpia.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/enterprise-scale.md +260 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-ai-act.md +82 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-cra.md +90 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-data-act.md +85 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dora.md +83 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-dsa.md +85 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-nis2.md +82 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/eu-rgpd.md +76 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/evaluate.md +115 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/export-okf.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/finops.md +117 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-algorithme-public.md +86 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi-carto.md +69 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-anssi.md +79 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-code-reuse.md +86 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dinum.md +83 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-dr.md +88 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-ebios.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-irn.md +103 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-marche-public.md +94 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-pssi.md +87 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-rgpd.md +75 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/fr-secnumcloud.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/framework.md +234 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gap-analysis.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-clarify.md +108 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-competitors.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcloud-search.md +106 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gcp-research.md +169 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/glossary.md +190 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-code-search.md +119 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-landscape.md +114 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/gov-reuse.md +112 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/govs-007-security.md +93 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/grants.md +106 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/graph-report.md +77 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/health.md +234 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hld-review.md +110 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/hooks.md +121 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/impact.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/import-okf.md +67 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/init.md +159 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/jsp-936.md +60 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/knowledge-compounding.md +140 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/maturity-model.md +186 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mcp-servers.md +329 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/migration.md +333 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mlops.md +126 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/mod-secure.md +124 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/national-data-strategy.md +115 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/navigator.md +86 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/operationalize.md +143 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pages.md +227 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pinecone-mcp.md +128 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/plan.md +66 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/platform-design.md +600 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/presentation.md +137 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/pricing.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles-compliance.md +63 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/principles.md +55 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/procurement.md +57 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/productivity.md +217 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/remote-control.md +151 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/requirements.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/research.md +65 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/review.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk-management.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/risk.md +132 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roadmap.md +58 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/README.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-analyst.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/business-architect.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cdo.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/ciso.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/cto-cdio.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-architect.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/data-governance-manager.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/delivery-manager.md +63 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/devops-engineer.md +55 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/enterprise-architect.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/it-service-manager.md +55 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/network-architect.md +58 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/performance-analyst.md +67 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/product-manager.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/security-architect.md +78 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/service-owner.md +58 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/solution-architect.md +75 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/roles/technical-architect.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/score.md +91 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot1.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot2.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sdd-lot3.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/search.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/secure.md +181 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security-hooks.md +200 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/security.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-assessment.md +47 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/service-design.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/servicenow.md +152 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/session-memory.md +100 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sobc.md +129 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/sow.md +125 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholder-analysis.md +51 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/stakeholders.md +138 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/start.md +276 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/story.md +61 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/strategy.md +211 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/submission-pack.md +72 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/supplier-profile.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tcop.md +124 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/template-builder.md +125 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/tenders.md +193 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/testing-plugin-branches.md +79 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/traceability.md +58 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/transition-architecture.md +69 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/trello.md +139 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-autonomy-tier.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ai-charter.md +89 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-classification.md +73 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-cloud-residency.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-data-sharing.md +84 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-digital-records.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-ias.md +93 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay-maintenance.md +154 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-overlay.md +208 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-pdpl.md +73 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-priorities-alignment.md +82 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-procurement.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-uaepass.md +83 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uae-zero-bureaucracy.md +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-consumer-duty.md +178 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-ctp-dependency.md +181 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-payments-overlay.md +216 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-safeguarding.md +176 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-fs-sca-rts.md +164 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/ai-playbook.md +56 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/algorithmic-transparency.md +44 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/digital-marketplace.md +55 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/secure-by-design.md +51 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/standards-map.md +108 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-government/technology-code-of-practice.md +63 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mdr-classification.md +59 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-mod/secure-by-design.md +54 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-clinical-safety-overlay.md +214 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0129.md +64 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dcb0160.md +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/uk-nhs-dtac.md +55 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/upgrading.md +130 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-impact.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-ai-rmf.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-federal-overlay.md +111 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-readiness.md +69 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fedramp-ssp.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-fisma-categorization.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-icam.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-nist-800-53.md +70 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-privacy-pia.md +74 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-sbom-eo-14028.md +71 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/us-zero-trust.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-climate.md +122 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-doctrine.md +120 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-gameplay.md +123 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley-value-chain.md +130 -0
- arckit_cli-6.1.1.data/data/share/arckit/docs/guides/wardley.md +173 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/.agents/plugins/marketplace.json +20 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/README.md +325 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/VERSION +1 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/docs/DEPENDENCY-MATRIX.md +616 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/arckit-codex-hook.mjs +1270 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-inject.mjs +1497 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-rollups.mjs +247 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/graph-utils.mjs +363 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hook-utils.mjs +383 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/hooks.json +80 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/okf-frontmatter.mjs +279 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/project-context-builder.mjs +168 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-codex/hooks/sync-guides.mjs +1120 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/README.md +68 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/VERSION +1 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-copilot/docs/DEPENDENCY-MATRIX.md +616 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/LICENSE +21 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/README.md +65 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/VERSION +1 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/docs/DEPENDENCY-MATRIX.md +616 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-opencode/opencode.json +25 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/.mcp.json +63 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/LICENSE +26 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/README.md +407 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/VERSION +1 -0
- arckit_cli-6.1.1.data/data/share/arckit/extensions/arckit-vibe/vibe-config.toml +62 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/README.md +680 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/000-global/ARC-000-PRIN-v1.0.md +120 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/ARC-001-STKE-v1.0.md +100 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/fixtures/001-test-project/README.md +15 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program-selfharness.md +748 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/autoresearch/program.md +269 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/check-prerequisites.sh +250 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/common.sh +359 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/create-project.sh +408 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/generate-document-id.sh +146 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/list-projects.sh +359 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bash/migrate-filenames.sh +553 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/bump-version.sh +293 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/check_doctype_collisions.py +30 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/check_recipes.py +94 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/check_references.py +144 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_agents.py +198 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/convert_vibe_skills.py +499 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/converter.py +2002 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/create-sdg-repo.py +820 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-architecture-hero.py +317 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-arckit-hero.py +278 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/generate-release-notes.sh +112 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/README.md +105 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/managed-agents/arckit-agent.py +418 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/push-extensions.sh +424 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/apply_doc_control_marker.py +50 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/common.py +288 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/create-project.py +373 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/generate-document-id.py +96 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/list-projects.py +238 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/python/migrate_classification.py +94 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/render-brand-pngs.py +72 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/standardise-colon.py +128 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-claude-plugin-layout.py +159 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/sync-shared-assets.py +132 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/tag-plugins.sh +65 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-doc-types-dual-registration.mjs +57 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-fde-templates.mjs +100 -0
- arckit_cli-6.1.1.data/data/share/arckit/scripts/tests/test-regime-registration.mjs +65 -0
- arckit_cli-6.1.1.dist-info/METADATA +1966 -0
- arckit_cli-6.1.1.dist-info/RECORD +482 -0
- arckit_cli-6.1.1.dist-info/WHEEL +4 -0
- arckit_cli-6.1.1.dist-info/entry_points.txt +2 -0
- arckit_cli-6.1.1.dist-info/licenses/LICENSE +26 -0
|
@@ -0,0 +1,1031 @@
|
|
|
1
|
+
# UK Government Secure by Design Assessment
|
|
2
|
+
|
|
3
|
+
> **Template Origin**: Official | **ArcKit Version**: [VERSION] | **Command**: `/arckit:secure`
|
|
4
|
+
|
|
5
|
+
## Document Control
|
|
6
|
+
|
|
7
|
+
<!-- DOC-CONTROL-HEADER -->
|
|
8
|
+
<!-- Resolved at command-execution time to _partials/document-control-uk.md or _partials/document-control-uae.md based on plugin userConfig classification_scheme + governance_framework. See _partials/RENDERING.md (when present). -->
|
|
9
|
+
|
|
10
|
+
## Revision History
|
|
11
|
+
|
|
12
|
+
| Version | Date | Author | Changes | Approved By | Approval Date |
|
|
13
|
+
|---------|------|--------|---------|-------------|---------------|
|
|
14
|
+
| [VERSION] | [DATE] | ArcKit AI | Initial creation from `/arckit.[COMMAND]` command | [PENDING] | [PENDING] |
|
|
15
|
+
|
|
16
|
+
## Document Purpose
|
|
17
|
+
|
|
18
|
+
[Brief description of what this document is for and how it will be used]
|
|
19
|
+
|
|
20
|
+
---
|
|
21
|
+
|
|
22
|
+
## Executive Summary
|
|
23
|
+
|
|
24
|
+
**Overall Security Posture**: [Strong / Adequate / Needs Improvement / Inadequate]
|
|
25
|
+
|
|
26
|
+
**NCSC Cyber Assessment Framework (CAF) Score**: [X/14 objectives met]
|
|
27
|
+
|
|
28
|
+
**Key Security Findings**:
|
|
29
|
+
|
|
30
|
+
- [Summary of critical security gaps]
|
|
31
|
+
- [Summary of security strengths]
|
|
32
|
+
- [Blocking security issues for next phase]
|
|
33
|
+
|
|
34
|
+
**Cyber Essentials Status**: [Not Started / In Progress / Basic / Plus]
|
|
35
|
+
|
|
36
|
+
**Cyber Security Standard Compliance**: [Compliant / Partially Compliant / Non-Compliant / Not Assessed]
|
|
37
|
+
|
|
38
|
+
**Risk Summary**: [Overall security risk level: Low / Medium / High / Very High]
|
|
39
|
+
|
|
40
|
+
---
|
|
41
|
+
|
|
42
|
+
## 1. NCSC Cyber Assessment Framework (CAF) Assessment
|
|
43
|
+
|
|
44
|
+
### Objective A: Managing Security Risk
|
|
45
|
+
|
|
46
|
+
**A1: Governance**
|
|
47
|
+
|
|
48
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
49
|
+
|
|
50
|
+
**Evidence**:
|
|
51
|
+
[Describe security governance structure]
|
|
52
|
+
|
|
53
|
+
**Security Governance**:
|
|
54
|
+
|
|
55
|
+
- [ ] Senior leadership owns information security
|
|
56
|
+
- [ ] Senior Information Risk Owner (SIRO) appointed
|
|
57
|
+
- [ ] Security policies and standards defined
|
|
58
|
+
- [ ] Security roles and responsibilities documented
|
|
59
|
+
- [ ] Security risk management process established
|
|
60
|
+
- [ ] Security oversight and reporting in place
|
|
61
|
+
|
|
62
|
+
**Gaps/Actions**:
|
|
63
|
+
|
|
64
|
+
- [Action 1]
|
|
65
|
+
- [Action 2]
|
|
66
|
+
|
|
67
|
+
**A2: Risk Management**
|
|
68
|
+
|
|
69
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
70
|
+
|
|
71
|
+
**Evidence**:
|
|
72
|
+
[Describe risk management approach]
|
|
73
|
+
|
|
74
|
+
**Risk Management Process**:
|
|
75
|
+
|
|
76
|
+
- [ ] Information assets identified and classified
|
|
77
|
+
- [ ] Threats and vulnerabilities assessed
|
|
78
|
+
- [ ] Risk assessment methodology defined
|
|
79
|
+
- [ ] Risk register maintained and reviewed
|
|
80
|
+
- [ ] Risk treatment plans implemented
|
|
81
|
+
- [ ] Residual risks accepted by SIRO
|
|
82
|
+
|
|
83
|
+
**Gaps/Actions**:
|
|
84
|
+
|
|
85
|
+
- [Action 1]
|
|
86
|
+
- [Action 2]
|
|
87
|
+
|
|
88
|
+
**A3: Asset Management**
|
|
89
|
+
|
|
90
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
91
|
+
|
|
92
|
+
**Evidence**:
|
|
93
|
+
[Describe asset inventory and management]
|
|
94
|
+
|
|
95
|
+
**Asset Management**:
|
|
96
|
+
|
|
97
|
+
- [ ] Hardware inventory maintained
|
|
98
|
+
- [ ] Software inventory maintained
|
|
99
|
+
- [ ] Data assets catalogued
|
|
100
|
+
- [ ] Asset ownership assigned
|
|
101
|
+
- [ ] Asset lifecycle management
|
|
102
|
+
- [ ] Secure disposal procedures
|
|
103
|
+
|
|
104
|
+
**Gaps/Actions**:
|
|
105
|
+
|
|
106
|
+
- [Action 1]
|
|
107
|
+
- [Action 2]
|
|
108
|
+
|
|
109
|
+
**A4: Supply Chain**
|
|
110
|
+
|
|
111
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
112
|
+
|
|
113
|
+
**Evidence**:
|
|
114
|
+
[Describe supply chain security]
|
|
115
|
+
|
|
116
|
+
**Supply Chain Security**:
|
|
117
|
+
|
|
118
|
+
- [ ] Supplier security requirements defined
|
|
119
|
+
- [ ] Supplier security assessments conducted
|
|
120
|
+
- [ ] Contracts include security obligations
|
|
121
|
+
- [ ] Third-party access controlled
|
|
122
|
+
- [ ] Supply chain risk register
|
|
123
|
+
- [ ] Open source software risks managed
|
|
124
|
+
|
|
125
|
+
**Gaps/Actions**:
|
|
126
|
+
|
|
127
|
+
- [Action 1]
|
|
128
|
+
- [Action 2]
|
|
129
|
+
|
|
130
|
+
---
|
|
131
|
+
|
|
132
|
+
### Objective B: Protecting Against Cyber Attack
|
|
133
|
+
|
|
134
|
+
**B1: Service Protection Policies and Processes**
|
|
135
|
+
|
|
136
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
137
|
+
|
|
138
|
+
**Evidence**:
|
|
139
|
+
[Describe protective security policies]
|
|
140
|
+
|
|
141
|
+
**Protection Policies**:
|
|
142
|
+
|
|
143
|
+
- [ ] Acceptable Use Policy
|
|
144
|
+
- [ ] Access Control Policy
|
|
145
|
+
- [ ] Data Protection Policy
|
|
146
|
+
- [ ] Secure Development Policy
|
|
147
|
+
- [ ] Network Security Policy
|
|
148
|
+
- [ ] Cryptography Policy
|
|
149
|
+
|
|
150
|
+
**Gaps/Actions**:
|
|
151
|
+
|
|
152
|
+
- [Action 1]
|
|
153
|
+
- [Action 2]
|
|
154
|
+
|
|
155
|
+
**B2: Identity and Access Control**
|
|
156
|
+
|
|
157
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
158
|
+
|
|
159
|
+
**Evidence**:
|
|
160
|
+
[Describe access control implementation]
|
|
161
|
+
|
|
162
|
+
**Access Controls**:
|
|
163
|
+
|
|
164
|
+
- [ ] User accounts managed centrally
|
|
165
|
+
- [ ] Multi-factor authentication (MFA) enabled
|
|
166
|
+
- [ ] Privileged access management (PAM)
|
|
167
|
+
- [ ] Least privilege principle enforced
|
|
168
|
+
- [ ] Regular access reviews
|
|
169
|
+
- [ ] Account provisioning/deprovisioning process
|
|
170
|
+
- [ ] Strong password policy (12+ characters)
|
|
171
|
+
|
|
172
|
+
**Authentication Method**: [GOV.UK Verify / Azure AD / Other]
|
|
173
|
+
|
|
174
|
+
**Gaps/Actions**:
|
|
175
|
+
|
|
176
|
+
- [Action 1]
|
|
177
|
+
- [Action 2]
|
|
178
|
+
|
|
179
|
+
**B3: Data Security**
|
|
180
|
+
|
|
181
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
182
|
+
|
|
183
|
+
**Evidence**:
|
|
184
|
+
[Describe data protection measures]
|
|
185
|
+
|
|
186
|
+
**Data Protection**:
|
|
187
|
+
|
|
188
|
+
- [ ] Data classification scheme implemented
|
|
189
|
+
- [ ] Encryption at rest (AES-256 minimum)
|
|
190
|
+
- [ ] Encryption in transit (TLS 1.3 minimum)
|
|
191
|
+
- [ ] Data loss prevention (DLP) controls
|
|
192
|
+
- [ ] Secure data destruction
|
|
193
|
+
- [ ] UK GDPR compliance
|
|
194
|
+
- [ ] Data retention policy
|
|
195
|
+
|
|
196
|
+
**Personal Data Processing**: [Yes / No]
|
|
197
|
+
**DPIA Completed**: [Yes / No / N/A]
|
|
198
|
+
|
|
199
|
+
**Gaps/Actions**:
|
|
200
|
+
|
|
201
|
+
- [Action 1]
|
|
202
|
+
- [Action 2]
|
|
203
|
+
|
|
204
|
+
**B4: System Security**
|
|
205
|
+
|
|
206
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
207
|
+
|
|
208
|
+
**Evidence**:
|
|
209
|
+
[Describe system hardening and security]
|
|
210
|
+
|
|
211
|
+
**System Hardening**:
|
|
212
|
+
|
|
213
|
+
- [ ] Secure baseline configurations
|
|
214
|
+
- [ ] Unnecessary services disabled
|
|
215
|
+
- [ ] Security patches applied timely
|
|
216
|
+
- [ ] Anti-malware deployed
|
|
217
|
+
- [ ] Application whitelisting (where appropriate)
|
|
218
|
+
- [ ] Host-based firewalls
|
|
219
|
+
- [ ] Endpoint Detection and Response (EDR)
|
|
220
|
+
|
|
221
|
+
**Operating Systems**: [Windows / Linux / macOS / Mixed]
|
|
222
|
+
|
|
223
|
+
**Gaps/Actions**:
|
|
224
|
+
|
|
225
|
+
- [Action 1]
|
|
226
|
+
- [Action 2]
|
|
227
|
+
|
|
228
|
+
**B5: Resilient Networks**
|
|
229
|
+
|
|
230
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
231
|
+
|
|
232
|
+
**Evidence**:
|
|
233
|
+
[Describe network architecture and security]
|
|
234
|
+
|
|
235
|
+
**Network Security**:
|
|
236
|
+
|
|
237
|
+
- [ ] Network segmentation by function/sensitivity
|
|
238
|
+
- [ ] Firewalls at network boundaries
|
|
239
|
+
- [ ] Intrusion Detection/Prevention Systems (IDS/IPS)
|
|
240
|
+
- [ ] DDoS protection
|
|
241
|
+
- [ ] Secure remote access (VPN)
|
|
242
|
+
- [ ] Network Access Control (NAC)
|
|
243
|
+
- [ ] WiFi security (WPA3)
|
|
244
|
+
|
|
245
|
+
**Network Architecture**: [On-premise / Cloud / Hybrid]
|
|
246
|
+
|
|
247
|
+
**Gaps/Actions**:
|
|
248
|
+
|
|
249
|
+
- [Action 1]
|
|
250
|
+
- [Action 2]
|
|
251
|
+
|
|
252
|
+
**B6: Staff Awareness and Training**
|
|
253
|
+
|
|
254
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
255
|
+
|
|
256
|
+
**Evidence**:
|
|
257
|
+
[Describe security awareness program]
|
|
258
|
+
|
|
259
|
+
**Security Training**:
|
|
260
|
+
|
|
261
|
+
- [ ] Mandatory security awareness training
|
|
262
|
+
- [ ] Phishing awareness training
|
|
263
|
+
- [ ] Role-based security training
|
|
264
|
+
- [ ] Annual security refresher
|
|
265
|
+
- [ ] Security incident reporting awareness
|
|
266
|
+
- [ ] Data protection training (UK GDPR)
|
|
267
|
+
- [ ] Social engineering awareness
|
|
268
|
+
|
|
269
|
+
**Training Completion Rate**: [X%]
|
|
270
|
+
|
|
271
|
+
**Gaps/Actions**:
|
|
272
|
+
|
|
273
|
+
- [Action 1]
|
|
274
|
+
- [Action 2]
|
|
275
|
+
|
|
276
|
+
---
|
|
277
|
+
|
|
278
|
+
### Objective C: Detecting Cyber Security Events
|
|
279
|
+
|
|
280
|
+
**C1: Security Monitoring**
|
|
281
|
+
|
|
282
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
283
|
+
|
|
284
|
+
**Evidence**:
|
|
285
|
+
[Describe monitoring capabilities]
|
|
286
|
+
|
|
287
|
+
**Monitoring Capabilities**:
|
|
288
|
+
|
|
289
|
+
- [ ] Centralized logging (SIEM)
|
|
290
|
+
- [ ] Real-time security alerting
|
|
291
|
+
- [ ] Log retention (minimum 12 months)
|
|
292
|
+
- [ ] Security event correlation
|
|
293
|
+
- [ ] User behavior analytics
|
|
294
|
+
- [ ] Threat intelligence integration
|
|
295
|
+
- [ ] File integrity monitoring
|
|
296
|
+
|
|
297
|
+
**SIEM Solution**: [Splunk / Sentinel / ELK / Other / None]
|
|
298
|
+
|
|
299
|
+
**Gaps/Actions**:
|
|
300
|
+
|
|
301
|
+
- [Action 1]
|
|
302
|
+
- [Action 2]
|
|
303
|
+
|
|
304
|
+
**C2: Proactive Security Event Discovery**
|
|
305
|
+
|
|
306
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
307
|
+
|
|
308
|
+
**Evidence**:
|
|
309
|
+
[Describe proactive threat hunting]
|
|
310
|
+
|
|
311
|
+
**Proactive Measures**:
|
|
312
|
+
|
|
313
|
+
- [ ] Threat hunting activities
|
|
314
|
+
- [ ] Vulnerability scanning (weekly/monthly)
|
|
315
|
+
- [ ] NCSC VMS enrolled and alerts actioned
|
|
316
|
+
- [ ] Penetration testing (annual minimum)
|
|
317
|
+
- [ ] Red team exercises
|
|
318
|
+
- [ ] Security posture reviews
|
|
319
|
+
- [ ] Threat modeling
|
|
320
|
+
|
|
321
|
+
**NCSC Vulnerability Monitoring Service (VMS)**:
|
|
322
|
+
|
|
323
|
+
- **VMS Enrollment Status**: [Enrolled / Not Enrolled / In Progress]
|
|
324
|
+
- **VMS Coverage**: [Number of domains/IPs monitored]
|
|
325
|
+
- **VMS Alert Handling**: [Process for triaging and actioning VMS alerts]
|
|
326
|
+
|
|
327
|
+
**Last Penetration Test**: [Date / Not Conducted]
|
|
328
|
+
**Pen Test Findings**: [Critical: X, High: Y, Medium: Z, Low: W]
|
|
329
|
+
|
|
330
|
+
**Gaps/Actions**:
|
|
331
|
+
|
|
332
|
+
- [Action 1]
|
|
333
|
+
- [Action 2]
|
|
334
|
+
|
|
335
|
+
---
|
|
336
|
+
|
|
337
|
+
### Objective D: Minimising the Impact of Cyber Security Incidents
|
|
338
|
+
|
|
339
|
+
**D1: Response and Recovery Planning**
|
|
340
|
+
|
|
341
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
342
|
+
|
|
343
|
+
**Evidence**:
|
|
344
|
+
[Describe incident response and recovery plans]
|
|
345
|
+
|
|
346
|
+
**Incident Response**:
|
|
347
|
+
|
|
348
|
+
- [ ] Incident response plan documented
|
|
349
|
+
- [ ] Incident response team defined
|
|
350
|
+
- [ ] Incident classification scheme
|
|
351
|
+
- [ ] Escalation procedures defined
|
|
352
|
+
- [ ] Communication plan for incidents
|
|
353
|
+
- [ ] Regulatory reporting process (ICO)
|
|
354
|
+
- [ ] Lessons learned process
|
|
355
|
+
|
|
356
|
+
**IR Plan Last Tested**: [Date / Not Tested]
|
|
357
|
+
|
|
358
|
+
**Business Continuity**:
|
|
359
|
+
|
|
360
|
+
- [ ] Business continuity plan (BCP)
|
|
361
|
+
- [ ] Disaster recovery plan (DRP)
|
|
362
|
+
- [ ] Recovery time objective (RTO) defined
|
|
363
|
+
- [ ] Recovery point objective (RPO) defined
|
|
364
|
+
- [ ] BC/DR testing conducted
|
|
365
|
+
|
|
366
|
+
**RTO**: [X hours]
|
|
367
|
+
**RPO**: [X hours]
|
|
368
|
+
|
|
369
|
+
**Gaps/Actions**:
|
|
370
|
+
|
|
371
|
+
- [Action 1]
|
|
372
|
+
- [Action 2]
|
|
373
|
+
|
|
374
|
+
**D2: Improvements**
|
|
375
|
+
|
|
376
|
+
**Status**: [✅ Achieved | ⚠️ Partially Achieved | ❌ Not Achieved | N/A]
|
|
377
|
+
|
|
378
|
+
**Evidence**:
|
|
379
|
+
[Describe continuous improvement process]
|
|
380
|
+
|
|
381
|
+
**Continuous Improvement**:
|
|
382
|
+
|
|
383
|
+
- [ ] Post-incident reviews conducted
|
|
384
|
+
- [ ] Security metrics tracked
|
|
385
|
+
- [ ] Security improvements implemented
|
|
386
|
+
- [ ] Lessons learned documented
|
|
387
|
+
- [ ] Security trends analyzed
|
|
388
|
+
- [ ] Security roadmap maintained
|
|
389
|
+
|
|
390
|
+
**Gaps/Actions**:
|
|
391
|
+
|
|
392
|
+
- [Action 1]
|
|
393
|
+
- [Action 2]
|
|
394
|
+
|
|
395
|
+
---
|
|
396
|
+
|
|
397
|
+
## 2. Cyber Essentials / Cyber Essentials Plus
|
|
398
|
+
|
|
399
|
+
### Cyber Essentials Status
|
|
400
|
+
|
|
401
|
+
**Current Status**: [Not Started / In Progress / Certified Basic / Certified Plus]
|
|
402
|
+
|
|
403
|
+
**Certification Date**: [Date / N/A]
|
|
404
|
+
**Expiry Date**: [Date / N/A]
|
|
405
|
+
|
|
406
|
+
**Cyber Essentials Requirements**:
|
|
407
|
+
|
|
408
|
+
| Control Area | Status | Evidence |
|
|
409
|
+
|--------------|--------|----------|
|
|
410
|
+
| **Firewalls** | [✅/⚠️/❌] | [Description] |
|
|
411
|
+
| **Secure Configuration** | [✅/⚠️/❌] | [Description] |
|
|
412
|
+
| **Access Control** | [✅/⚠️/❌] | [Description] |
|
|
413
|
+
| **Malware Protection** | [✅/⚠️/❌] | [Description] |
|
|
414
|
+
| **Patch Management** | [✅/⚠️/❌] | [Description] |
|
|
415
|
+
|
|
416
|
+
**Cyber Essentials Plus Additional Requirements**:
|
|
417
|
+
|
|
418
|
+
- [ ] External vulnerability scan passed
|
|
419
|
+
- [ ] Internal vulnerability scan passed
|
|
420
|
+
- [ ] System configuration review passed
|
|
421
|
+
|
|
422
|
+
**Target Certification Level**: [Basic / Plus]
|
|
423
|
+
|
|
424
|
+
**Gaps/Actions**:
|
|
425
|
+
|
|
426
|
+
- [Action 1]
|
|
427
|
+
- [Action 2]
|
|
428
|
+
|
|
429
|
+
---
|
|
430
|
+
|
|
431
|
+
## 3. UK GDPR and Data Protection
|
|
432
|
+
|
|
433
|
+
### 3.1 Data Protection Compliance
|
|
434
|
+
|
|
435
|
+
**Data Protection Officer (DPO) Appointed**: [Yes / No / Not Required]
|
|
436
|
+
|
|
437
|
+
**ICO Registration**: [Required / Not Required / Completed]
|
|
438
|
+
|
|
439
|
+
**UK GDPR Compliance**:
|
|
440
|
+
|
|
441
|
+
- [ ] Lawful basis for processing identified
|
|
442
|
+
- [ ] Privacy notice published
|
|
443
|
+
- [ ] Data subject rights procedures
|
|
444
|
+
- [ ] Data retention policy defined
|
|
445
|
+
- [ ] Data breach notification process (72 hours)
|
|
446
|
+
- [ ] Data processing agreements with suppliers
|
|
447
|
+
- [ ] Records of processing activities (ROPA)
|
|
448
|
+
|
|
449
|
+
**Personal Data Processed**: [Yes / No]
|
|
450
|
+
|
|
451
|
+
**Special Category Data**: [Yes / No]
|
|
452
|
+
|
|
453
|
+
**Gaps/Actions**:
|
|
454
|
+
|
|
455
|
+
- [Action 1]
|
|
456
|
+
- [Action 2]
|
|
457
|
+
|
|
458
|
+
### 3.2 Data Protection Impact Assessment (DPIA)
|
|
459
|
+
|
|
460
|
+
**DPIA Required**: [Yes / No]
|
|
461
|
+
|
|
462
|
+
**DPIA Status**: [Completed / In Progress / Not Started / N/A]
|
|
463
|
+
|
|
464
|
+
**DPIA Findings**:
|
|
465
|
+
|
|
466
|
+
- High risks identified: [Number]
|
|
467
|
+
- Mitigations implemented: [Number]
|
|
468
|
+
- Residual risks accepted: [Yes/No by whom]
|
|
469
|
+
|
|
470
|
+
**ICO Consultation Required**: [Yes / No]
|
|
471
|
+
|
|
472
|
+
**Gaps/Actions**:
|
|
473
|
+
|
|
474
|
+
- [Action 1]
|
|
475
|
+
- [Action 2]
|
|
476
|
+
|
|
477
|
+
---
|
|
478
|
+
|
|
479
|
+
## 4. Secure Development Practices
|
|
480
|
+
|
|
481
|
+
### 4.1 Secure Software Development Lifecycle (SDLC)
|
|
482
|
+
|
|
483
|
+
**Development Methodology**: [Agile / Waterfall / DevOps]
|
|
484
|
+
|
|
485
|
+
**Secure Development Practices**:
|
|
486
|
+
|
|
487
|
+
- [ ] Secure coding standards defined
|
|
488
|
+
- [ ] Security requirements in user stories
|
|
489
|
+
- [ ] Threat modeling in design phase
|
|
490
|
+
- [ ] Code review includes security
|
|
491
|
+
- [ ] Static Application Security Testing (SAST)
|
|
492
|
+
- [ ] Dynamic Application Security Testing (DAST)
|
|
493
|
+
- [ ] Software Composition Analysis (SCA)
|
|
494
|
+
- [ ] Dependency vulnerability scanning
|
|
495
|
+
|
|
496
|
+
**OWASP Top 10 Mitigation**:
|
|
497
|
+
|
|
498
|
+
- [ ] Injection flaws prevented
|
|
499
|
+
- [ ] Broken authentication prevented
|
|
500
|
+
- [ ] Sensitive data exposure prevented
|
|
501
|
+
- [ ] XML External Entities (XXE) prevented
|
|
502
|
+
- [ ] Broken access control prevented
|
|
503
|
+
- [ ] Security misconfiguration prevented
|
|
504
|
+
- [ ] Cross-Site Scripting (XSS) prevented
|
|
505
|
+
- [ ] Insecure deserialization prevented
|
|
506
|
+
- [ ] Using components with known vulnerabilities prevented
|
|
507
|
+
- [ ] Insufficient logging and monitoring addressed
|
|
508
|
+
|
|
509
|
+
**Gaps/Actions**:
|
|
510
|
+
|
|
511
|
+
- [Action 1]
|
|
512
|
+
- [Action 2]
|
|
513
|
+
|
|
514
|
+
### 4.2 DevSecOps
|
|
515
|
+
|
|
516
|
+
**CI/CD Security Integration**:
|
|
517
|
+
|
|
518
|
+
- [ ] Automated security testing in pipeline
|
|
519
|
+
- [ ] Secrets scanning (no hardcoded credentials)
|
|
520
|
+
- [ ] Container image scanning
|
|
521
|
+
- [ ] Infrastructure as Code (IaC) security
|
|
522
|
+
- [ ] Build artifact signing
|
|
523
|
+
- [ ] Automated deployment security checks
|
|
524
|
+
|
|
525
|
+
**Gaps/Actions**:
|
|
526
|
+
|
|
527
|
+
- [Action 1]
|
|
528
|
+
- [Action 2]
|
|
529
|
+
|
|
530
|
+
---
|
|
531
|
+
|
|
532
|
+
## 5. Cloud Security (if applicable)
|
|
533
|
+
|
|
534
|
+
### 5.1 Cloud Service Provider
|
|
535
|
+
|
|
536
|
+
**Cloud Provider**: [AWS / Azure / GCP / GOV.UK PaaS / Other / N/A]
|
|
537
|
+
|
|
538
|
+
**Cloud Deployment Model**: [Public / Private / Hybrid / N/A]
|
|
539
|
+
|
|
540
|
+
**Data Residency**: [UK / EU / Other]
|
|
541
|
+
|
|
542
|
+
**Cloud Security Controls**:
|
|
543
|
+
|
|
544
|
+
- [ ] Cloud Security Posture Management (CSPM)
|
|
545
|
+
- [ ] Identity and Access Management (IAM)
|
|
546
|
+
- [ ] Encryption key management
|
|
547
|
+
- [ ] Network security groups
|
|
548
|
+
- [ ] Cloud Access Security Broker (CASB)
|
|
549
|
+
- [ ] Cloud security monitoring
|
|
550
|
+
- [ ] Multi-region redundancy
|
|
551
|
+
|
|
552
|
+
**NCSC Cloud Security Principles**: [X/14 principles met]
|
|
553
|
+
|
|
554
|
+
**Gaps/Actions**:
|
|
555
|
+
|
|
556
|
+
- [Action 1]
|
|
557
|
+
- [Action 2]
|
|
558
|
+
|
|
559
|
+
---
|
|
560
|
+
|
|
561
|
+
## 6. Vulnerability and Patch Management
|
|
562
|
+
|
|
563
|
+
### 6.1 Vulnerability Management
|
|
564
|
+
|
|
565
|
+
**Vulnerability Scanning Frequency**: [Daily / Weekly / Monthly]
|
|
566
|
+
|
|
567
|
+
**Scanning Coverage**: [X% of assets]
|
|
568
|
+
|
|
569
|
+
**Vulnerability Management Process**:
|
|
570
|
+
|
|
571
|
+
- [ ] Automated vulnerability scanning
|
|
572
|
+
- [ ] Vulnerability prioritization (CVSS scores)
|
|
573
|
+
- [ ] Remediation SLAs defined
|
|
574
|
+
- [ ] Exception process for unfixable vulnerabilities
|
|
575
|
+
- [ ] Vulnerability remediation tracking
|
|
576
|
+
- [ ] Metrics and reporting
|
|
577
|
+
|
|
578
|
+
**Remediation SLAs**:
|
|
579
|
+
|
|
580
|
+
- Critical vulnerabilities: [Within X days]
|
|
581
|
+
- High vulnerabilities: [Within X days]
|
|
582
|
+
- Medium vulnerabilities: [Within X days]
|
|
583
|
+
- Low vulnerabilities: [Within X days]
|
|
584
|
+
|
|
585
|
+
#### VMS Integration
|
|
586
|
+
|
|
587
|
+
**NCSC Vulnerability Monitoring Service (VMS) Status**:
|
|
588
|
+
|
|
589
|
+
- [ ] Department enrolled in VMS
|
|
590
|
+
- [ ] All internet-facing domains registered with VMS
|
|
591
|
+
- [ ] VMS alerts integrated into vulnerability management workflow
|
|
592
|
+
- [ ] VMS remediation benchmarks adopted as departmental targets
|
|
593
|
+
- [ ] Regular review of VMS dashboard and reports
|
|
594
|
+
|
|
595
|
+
**VMS Remediation Benchmarks**:
|
|
596
|
+
|
|
597
|
+
| Metric | NCSC Benchmark | Departmental Target | Current Performance |
|
|
598
|
+
|--------|---------------|---------------------|---------------------|
|
|
599
|
+
| Domain-specific vulnerability fix time | 8 days | [Target] | [Current] |
|
|
600
|
+
| General vulnerability fix time | 32 days | [Target] | [Current] |
|
|
601
|
+
|
|
602
|
+
**VMS Coverage Metrics**:
|
|
603
|
+
|
|
604
|
+
- Domains monitored: [Number]
|
|
605
|
+
- IP ranges monitored: [Number]
|
|
606
|
+
- Coverage of internet-facing assets: [X%]
|
|
607
|
+
- Open VMS alerts: [Number]
|
|
608
|
+
|
|
609
|
+
**Current Vulnerability Status**:
|
|
610
|
+
|
|
611
|
+
- Critical: [Number]
|
|
612
|
+
- High: [Number]
|
|
613
|
+
- Medium: [Number]
|
|
614
|
+
- Low: [Number]
|
|
615
|
+
|
|
616
|
+
**Gaps/Actions**:
|
|
617
|
+
|
|
618
|
+
- [Action 1]
|
|
619
|
+
- [Action 2]
|
|
620
|
+
|
|
621
|
+
### 6.2 Patch Management
|
|
622
|
+
|
|
623
|
+
**Patch Management Process**:
|
|
624
|
+
|
|
625
|
+
- [ ] Patch assessment and testing
|
|
626
|
+
- [ ] Patch deployment schedule
|
|
627
|
+
- [ ] Emergency patching process
|
|
628
|
+
- [ ] Patch compliance monitoring
|
|
629
|
+
- [ ] Rollback procedures
|
|
630
|
+
|
|
631
|
+
**Patch Compliance**: [X% of systems patched]
|
|
632
|
+
|
|
633
|
+
**Critical Patch SLA**: [Within 14 days]
|
|
634
|
+
|
|
635
|
+
**Gaps/Actions**:
|
|
636
|
+
|
|
637
|
+
- [Action 1]
|
|
638
|
+
- [Action 2]
|
|
639
|
+
|
|
640
|
+
---
|
|
641
|
+
|
|
642
|
+
## 7. Third-Party and Supply Chain Risk
|
|
643
|
+
|
|
644
|
+
### 7.1 Third-Party Risk Management
|
|
645
|
+
|
|
646
|
+
**Third-Party Security Assessment**:
|
|
647
|
+
|
|
648
|
+
- [ ] Vendor security questionnaires
|
|
649
|
+
- [ ] Vendor security certifications verified
|
|
650
|
+
- [ ] Data Processing Agreements (DPAs) in place
|
|
651
|
+
- [ ] Third-party access controls
|
|
652
|
+
- [ ] Vendor risk register
|
|
653
|
+
- [ ] Ongoing vendor monitoring
|
|
654
|
+
|
|
655
|
+
**Key Third Parties**:
|
|
656
|
+
|
|
657
|
+
| Vendor | Service | Security Rating | Risk Level | Mitigations |
|
|
658
|
+
|--------|---------|-----------------|------------|-------------|
|
|
659
|
+
| [Vendor 1] | [Service] | [High/Med/Low] | [H/M/L] | [Controls] |
|
|
660
|
+
| [Vendor 2] | [Service] | [High/Med/Low] | [H/M/L] | [Controls] |
|
|
661
|
+
|
|
662
|
+
**Gaps/Actions**:
|
|
663
|
+
|
|
664
|
+
- [Action 1]
|
|
665
|
+
- [Action 2]
|
|
666
|
+
|
|
667
|
+
### 7.2 Open Source Security
|
|
668
|
+
|
|
669
|
+
**Open Source Components**: [Number]
|
|
670
|
+
|
|
671
|
+
**OSS Security Controls**:
|
|
672
|
+
|
|
673
|
+
- [ ] Software Bill of Materials (SBOM)
|
|
674
|
+
- [ ] Automated dependency scanning
|
|
675
|
+
- [ ] Known vulnerability detection (CVE)
|
|
676
|
+
- [ ] License compliance checks
|
|
677
|
+
- [ ] OSS component lifecycle management
|
|
678
|
+
|
|
679
|
+
**Gaps/Actions**:
|
|
680
|
+
|
|
681
|
+
- [Action 1]
|
|
682
|
+
- [Action 2]
|
|
683
|
+
|
|
684
|
+
---
|
|
685
|
+
|
|
686
|
+
## 8. Backup and Recovery
|
|
687
|
+
|
|
688
|
+
### 8.1 Backup Strategy
|
|
689
|
+
|
|
690
|
+
**Backup Method**: [3-2-1 rule / Continuous replication / Snapshot / Other]
|
|
691
|
+
|
|
692
|
+
**Backup Controls**:
|
|
693
|
+
|
|
694
|
+
- [ ] Automated backups scheduled
|
|
695
|
+
- [ ] Backup encryption enabled
|
|
696
|
+
- [ ] Offsite/cloud backups
|
|
697
|
+
- [ ] Immutable backups (ransomware protection)
|
|
698
|
+
- [ ] Backup integrity testing
|
|
699
|
+
- [ ] Backup restoration testing
|
|
700
|
+
|
|
701
|
+
**Backup Frequency**: [Continuous / Hourly / Daily / Weekly]
|
|
702
|
+
|
|
703
|
+
**Backup Retention**: [X days/months/years]
|
|
704
|
+
|
|
705
|
+
**Last Successful Backup**: [Date/time]
|
|
706
|
+
|
|
707
|
+
**Last Restoration Test**: [Date]
|
|
708
|
+
|
|
709
|
+
**Gaps/Actions**:
|
|
710
|
+
|
|
711
|
+
- [Action 1]
|
|
712
|
+
- [Action 2]
|
|
713
|
+
|
|
714
|
+
### 8.2 Recovery Capabilities
|
|
715
|
+
|
|
716
|
+
**Recovery Time Objective (RTO)**: [X hours]
|
|
717
|
+
**Recovery Point Objective (RPO)**: [X hours]
|
|
718
|
+
|
|
719
|
+
**Recovery Testing**: [Last tested: Date]
|
|
720
|
+
|
|
721
|
+
**Recovery Success Rate**: [X%]
|
|
722
|
+
|
|
723
|
+
**Gaps/Actions**:
|
|
724
|
+
|
|
725
|
+
- [Action 1]
|
|
726
|
+
- [Action 2]
|
|
727
|
+
|
|
728
|
+
---
|
|
729
|
+
|
|
730
|
+
## 9. UK Government Cyber Security Standard Compliance
|
|
731
|
+
|
|
732
|
+
> The [UK Government Cyber Security Standard](https://www.gov.uk/government/publications/government-cyber-security-standard) (July 2025, Cabinet Office) mandates CAF Baseline/Enhanced profiles, GovAssure assurance for critical systems, and Secure by Design high-confidence profiles. This section tracks compliance with those mandatory requirements beyond the CAF assessment above.
|
|
733
|
+
|
|
734
|
+
### 9.1 GovAssure Status
|
|
735
|
+
|
|
736
|
+
**GovAssure Cycle Year**: [YYYY / N/A]
|
|
737
|
+
|
|
738
|
+
**Scope**: [Description of critical systems in scope for GovAssure assessment]
|
|
739
|
+
|
|
740
|
+
| System | GovAssure Status | Assessment Date | Findings Summary | Remediation Status |
|
|
741
|
+
|--------|-----------------|-----------------|------------------|--------------------|
|
|
742
|
+
| [System 1] | [Planned / In Progress / Complete] | [Date / N/A] | [Summary] | [Open / In Progress / Closed] |
|
|
743
|
+
| [System 2] | [Planned / In Progress / Complete] | [Date / N/A] | [Summary] | [Open / In Progress / Closed] |
|
|
744
|
+
|
|
745
|
+
**Assessment Findings**:
|
|
746
|
+
|
|
747
|
+
- [Key finding 1]
|
|
748
|
+
- [Key finding 2]
|
|
749
|
+
|
|
750
|
+
**Remediation Actions**:
|
|
751
|
+
|
|
752
|
+
- [ ] [Action 1 - Owner - Due date]
|
|
753
|
+
- [ ] [Action 2 - Owner - Due date]
|
|
754
|
+
|
|
755
|
+
> Reference: [NCSC GovAssure guidance](https://www.ncsc.gov.uk/collection/govassure)
|
|
756
|
+
|
|
757
|
+
### 9.2 Secure by Design Confidence Rating
|
|
758
|
+
|
|
759
|
+
**Confidence Level**: [Low / Medium / High]
|
|
760
|
+
|
|
761
|
+
**Secure by Design Principles Checklist**:
|
|
762
|
+
|
|
763
|
+
| SbD Principle | Status | Evidence |
|
|
764
|
+
|---------------|--------|----------|
|
|
765
|
+
| **Secure Development** | [✅/⚠️/❌] | [Description] |
|
|
766
|
+
| **Secure Deployment** | [✅/⚠️/❌] | [Description] |
|
|
767
|
+
| **Secure Operation** | [✅/⚠️/❌] | [Description] |
|
|
768
|
+
|
|
769
|
+
**High-Confidence Profile Achievement**:
|
|
770
|
+
|
|
771
|
+
- [ ] Security is embedded throughout the development lifecycle
|
|
772
|
+
- [ ] Threat modelling conducted and reviewed regularly
|
|
773
|
+
- [ ] Security testing integrated into CI/CD pipelines
|
|
774
|
+
- [ ] Incident response capabilities tested and proven
|
|
775
|
+
- [ ] Continuous monitoring and improvement demonstrated
|
|
776
|
+
|
|
777
|
+
**Gap Analysis**:
|
|
778
|
+
|
|
779
|
+
| Gap | Impact | Improvement Action | Owner | Target Date |
|
|
780
|
+
|-----|--------|--------------------|-------|-------------|
|
|
781
|
+
| [Gap 1] | [High/Med/Low] | [Action] | [Owner] | [Date] |
|
|
782
|
+
| [Gap 2] | [High/Med/Low] | [Action] | [Owner] | [Date] |
|
|
783
|
+
|
|
784
|
+
### 9.3 Cyber Security Standard Exception Register
|
|
785
|
+
|
|
786
|
+
> Per CSS clauses 4.3/4.4, departments must formally record and manage exceptions where full compliance cannot be achieved.
|
|
787
|
+
|
|
788
|
+
| Exception ID | Description | CSS Clause | Risk Assessment | Mitigation in Place | Approval Authority | Review Date | Improvement Plan |
|
|
789
|
+
|-------------|-------------|------------|-----------------|---------------------|--------------------|-------------|------------------|
|
|
790
|
+
| CSS-EXC-001 | [Description] | [Clause ref] | [High/Med/Low] | [Mitigation] | [Authority] | [Date] | [Plan] |
|
|
791
|
+
| CSS-EXC-002 | [Description] | [Clause ref] | [High/Med/Low] | [Mitigation] | [Authority] | [Date] | [Plan] |
|
|
792
|
+
|
|
793
|
+
**Total Exceptions**: [Number]
|
|
794
|
+
**Exceptions Under Active Improvement Plan**: [Number]
|
|
795
|
+
|
|
796
|
+
**Gaps/Actions**:
|
|
797
|
+
|
|
798
|
+
- [Action 1]
|
|
799
|
+
- [Action 2]
|
|
800
|
+
|
|
801
|
+
### 9.4 Cyber Action Plan Alignment
|
|
802
|
+
|
|
803
|
+
> The [£210m Government Cyber Action Plan](https://www.gov.uk/government/publications/government-cyber-action-plan) (February 2026) is a cross-government investment programme across four pillars. This section tracks departmental and project alignment.
|
|
804
|
+
|
|
805
|
+
**Departmental Status**: [Participating / Not Yet Enrolled / N/A]
|
|
806
|
+
|
|
807
|
+
**Pillar Alignment**:
|
|
808
|
+
|
|
809
|
+
| Cyber Action Plan Pillar | Departmental Activities | Project Alignment | Status |
|
|
810
|
+
|--------------------------|------------------------|-------------------|--------|
|
|
811
|
+
| **Skills & Workforce** | [Cyber Academy enrollment, CCP certification, training programmes] | [Project security training activities] | [✅/⚠️/❌] |
|
|
812
|
+
| **Tooling & Infrastructure** | [Security tooling investments, VMS adoption, SIEM upgrades] | [Project security tooling] | [✅/⚠️/❌] |
|
|
813
|
+
| **Resilience & Response** | [Incident response capability, DR improvements, threat intelligence] | [Project resilience measures] | [✅/⚠️/❌] |
|
|
814
|
+
| **Collaboration & Sharing** | [Cross-government threat sharing, sector collaboration] | [Project information sharing] | [✅/⚠️/❌] |
|
|
815
|
+
|
|
816
|
+
**Investment Alignment**:
|
|
817
|
+
|
|
818
|
+
- [ ] Department has submitted Cyber Action Plan investment case
|
|
819
|
+
- [ ] Project security budget aligns with Cyber Action Plan priorities
|
|
820
|
+
- [ ] Funding opportunities identified for project security improvements
|
|
821
|
+
|
|
822
|
+
**Gaps/Actions**:
|
|
823
|
+
|
|
824
|
+
- [Action 1]
|
|
825
|
+
- [Action 2]
|
|
826
|
+
|
|
827
|
+
---
|
|
828
|
+
|
|
829
|
+
## 10. GovS 007: Security — Alignment Summary
|
|
830
|
+
|
|
831
|
+
> [Government Functional Standard GovS 007: Security](https://www.gov.uk/government/publications/government-functional-standard-govs-007-security) is the cross-government protective security standard. The table below maps its nine principles to evidence captured elsewhere in this assessment and related ArcKit artefacts.
|
|
832
|
+
|
|
833
|
+
| GovS 007 Principle | Evidence / ArcKit Artefact | Status |
|
|
834
|
+
|---------------------|---------------------------|--------|
|
|
835
|
+
| 1. Governance aligned to organisational purpose | Section 1 (CAF A1 Governance), SIRO sign-off | [✅/⚠️/❌] |
|
|
836
|
+
| 2. Risk-based approach to protective security | Section 1 (CAF A2 Risk Management), `/arckit:risk` | [✅/⚠️/❌] |
|
|
837
|
+
| 3. Security integrated into all activities | Sections 4–5 (Secure Development, Cloud Security) | [✅/⚠️/❌] |
|
|
838
|
+
| 4. Holistic security planning across disciplines | Sections 1–8 (CAF full assessment), `/arckit:plan` | [✅/⚠️/❌] |
|
|
839
|
+
| 5. Security culture embedded in organisation | Section 1 (CAF B6 Staff Awareness), Section 11 (Cyber Security Profession) | [✅/⚠️/❌] |
|
|
840
|
+
| 6. Accountability at all levels | Approval & Sign-Off (SSRO, DSO, SIRO roles) | [✅/⚠️/❌] |
|
|
841
|
+
| 7. Proportionate security measures | Executive Summary (data classification → controls) | [✅/⚠️/❌] |
|
|
842
|
+
| 8. Continuous improvement of security posture | Section 1 (CAF D2 Improvements), Section 9.4 (Cyber Action Plan), `/arckit:operationalize` | [✅/⚠️/❌] |
|
|
843
|
+
| 9. Compliance with legal/regulatory obligations | Section 3 (UK GDPR), `/arckit:dpia` | [✅/⚠️/❌] |
|
|
844
|
+
|
|
845
|
+
### Security Roles (GovS 007)
|
|
846
|
+
|
|
847
|
+
| Role | Name | Responsibility |
|
|
848
|
+
|------|------|---------------|
|
|
849
|
+
| Accounting Officer | [Name] | Overall accountability for security of the organisation |
|
|
850
|
+
| Senior Security Risk Owner (SSRO) | [Name] | Owns protective security risk at board level |
|
|
851
|
+
| Departmental Security Officer (DSO) | [Name] | Day-to-day security coordination and policy implementation |
|
|
852
|
+
| Senior Information Risk Owner (SIRO) | [Name] | Owns information and cyber security risk |
|
|
853
|
+
|
|
854
|
+
---
|
|
855
|
+
|
|
856
|
+
## 11. Government Cyber Security Profession
|
|
857
|
+
|
|
858
|
+
> The [Government Cyber Security Profession](https://www.gov.uk/government/publications/government-cyber-security-profession) establishes a career framework, Certified Cyber Professional (CCP) certification, and the Government Cyber Academy for building cyber security capability across government. This section assesses the project's alignment with profession requirements.
|
|
859
|
+
|
|
860
|
+
### 11.1 Profession Participation
|
|
861
|
+
|
|
862
|
+
**Department Enrolled in Cyber Security Profession**: [Yes / No / In Progress]
|
|
863
|
+
|
|
864
|
+
| Metric | Value |
|
|
865
|
+
|--------|-------|
|
|
866
|
+
| **CCP-certified staff in department** | [Number] |
|
|
867
|
+
| **CCP-certified staff on this project** | [Number] |
|
|
868
|
+
| **Cyber Academy completions (department)** | [Number] |
|
|
869
|
+
| **Cyber Academy completions (project team)** | [Number] |
|
|
870
|
+
|
|
871
|
+
### 11.2 Project Security Role Mapping
|
|
872
|
+
|
|
873
|
+
| Security Role | Role Holder | CCP Status | DDaT Role Alignment | Notes |
|
|
874
|
+
|---------------|-------------|------------|---------------------|-------|
|
|
875
|
+
| Security Architect | [Name] | [Certified / In Progress / Not Started] | [DDaT role] | |
|
|
876
|
+
| Security Engineer | [Name] | [Certified / In Progress / Not Started] | [DDaT role] | |
|
|
877
|
+
| Security Operations Lead | [Name] | [Certified / In Progress / Not Started] | [DDaT role] | |
|
|
878
|
+
| Penetration Tester | [Name] | [Certified / In Progress / Not Started] | [DDaT role] | |
|
|
879
|
+
| Incident Responder | [Name] | [Certified / In Progress / Not Started] | [DDaT role] | |
|
|
880
|
+
|
|
881
|
+
### 11.3 Government Cyber Academy Engagement
|
|
882
|
+
|
|
883
|
+
| Learning Area | Completions | Target | Status |
|
|
884
|
+
|---------------|-------------|--------|--------|
|
|
885
|
+
| Cyber Security Fundamentals | [Number] | [Target] | [✅/⚠️/❌] |
|
|
886
|
+
| Secure Development | [Number] | [Target] | [✅/⚠️/❌] |
|
|
887
|
+
| Security Operations | [Number] | [Target] | [✅/⚠️/❌] |
|
|
888
|
+
| Incident Response | [Number] | [Target] | [✅/⚠️/❌] |
|
|
889
|
+
| Risk Management | [Number] | [Target] | [✅/⚠️/❌] |
|
|
890
|
+
|
|
891
|
+
### 11.4 Workforce Development Plan
|
|
892
|
+
|
|
893
|
+
**Workforce Development Checklist**:
|
|
894
|
+
|
|
895
|
+
- [ ] Security roles mapped to DDaT profession framework
|
|
896
|
+
- [ ] CCP certification targets set for project security staff
|
|
897
|
+
- [ ] Cyber Academy learning paths assigned to team members
|
|
898
|
+
- [ ] Security skills gap analysis completed
|
|
899
|
+
- [ ] Training budget allocated for cyber security upskilling
|
|
900
|
+
- [ ] Succession planning for key security roles
|
|
901
|
+
|
|
902
|
+
**Actions**:
|
|
903
|
+
|
|
904
|
+
- [ ] [Action 1 - Owner - Due date]
|
|
905
|
+
- [ ] [Action 2 - Owner - Due date]
|
|
906
|
+
|
|
907
|
+
---
|
|
908
|
+
|
|
909
|
+
## Overall Security Assessment Summary
|
|
910
|
+
|
|
911
|
+
### NCSC CAF Scorecard
|
|
912
|
+
|
|
913
|
+
| CAF Objective | Principles Achieved | Status |
|
|
914
|
+
|---------------|---------------------|--------|
|
|
915
|
+
| A. Managing Security Risk | [X/4] | [✅/⚠️/❌] |
|
|
916
|
+
| B. Protecting Against Cyber Attack | [X/6] | [✅/⚠️/❌] |
|
|
917
|
+
| C. Detecting Cyber Security Events | [X/2] | [✅/⚠️/❌] |
|
|
918
|
+
| D. Minimising Impact of Incidents | [X/2] | [✅/⚠️/❌] |
|
|
919
|
+
| **Overall** | **[X/14]** | **[Overall status]** |
|
|
920
|
+
|
|
921
|
+
### Security Posture Summary
|
|
922
|
+
|
|
923
|
+
**Strengths**:
|
|
924
|
+
|
|
925
|
+
- [Strength 1]
|
|
926
|
+
- [Strength 2]
|
|
927
|
+
|
|
928
|
+
**Critical Gaps**:
|
|
929
|
+
|
|
930
|
+
- [Gap 1 - blocks progression to next phase]
|
|
931
|
+
- [Gap 2 - unacceptable risk level]
|
|
932
|
+
|
|
933
|
+
**Overall Risk Rating**: [Low / Medium / High / Very High]
|
|
934
|
+
|
|
935
|
+
### Critical Security Issues
|
|
936
|
+
|
|
937
|
+
1. [Issue 1 with CAF reference] - **CRITICAL** - [Impact]
|
|
938
|
+
2. [Issue 2 with CAF reference] - **HIGH** - [Impact]
|
|
939
|
+
3. [Issue 3 with CAF reference] - **HIGH** - [Impact]
|
|
940
|
+
|
|
941
|
+
### Recommendations
|
|
942
|
+
|
|
943
|
+
**Critical Priority** (0-30 days - must resolve before next phase):
|
|
944
|
+
|
|
945
|
+
- [Recommendation 1 - Owner - Due date]
|
|
946
|
+
- [Recommendation 2 - Owner - Due date]
|
|
947
|
+
|
|
948
|
+
**High Priority** (1-3 months - significant risk reduction):
|
|
949
|
+
|
|
950
|
+
- [Recommendation 1 - Owner - Due date]
|
|
951
|
+
- [Recommendation 2 - Owner - Due date]
|
|
952
|
+
|
|
953
|
+
**Medium Priority** (3-6 months - continuous improvement):
|
|
954
|
+
|
|
955
|
+
- [Recommendation 1 - Owner - Due date]
|
|
956
|
+
- [Recommendation 2 - Owner - Due date]
|
|
957
|
+
|
|
958
|
+
---
|
|
959
|
+
|
|
960
|
+
## Next Steps and Action Plan
|
|
961
|
+
|
|
962
|
+
**Immediate Actions** (0-30 days):
|
|
963
|
+
|
|
964
|
+
- [ ] [Action 1 - Owner - Due date]
|
|
965
|
+
- [ ] [Action 2 - Owner - Due date]
|
|
966
|
+
|
|
967
|
+
**Short-term Actions** (1-3 months):
|
|
968
|
+
|
|
969
|
+
- [ ] [Action 1 - Owner - Due date]
|
|
970
|
+
- [ ] [Action 2 - Owner - Due date]
|
|
971
|
+
|
|
972
|
+
**Long-term Actions** (3-12 months):
|
|
973
|
+
|
|
974
|
+
- [ ] [Action 1 - Owner - Due date]
|
|
975
|
+
- [ ] [Action 2 - Owner - Due date]
|
|
976
|
+
|
|
977
|
+
**Next Security Review**: [Date - recommend quarterly during development, annually in Live]
|
|
978
|
+
|
|
979
|
+
---
|
|
980
|
+
|
|
981
|
+
## Approval and Sign-Off
|
|
982
|
+
|
|
983
|
+
| Role | Name | Date | Signature |
|
|
984
|
+
|------|------|------|-----------|
|
|
985
|
+
| Project Lead | [Name] | | |
|
|
986
|
+
| Security Architect | [Name] | | |
|
|
987
|
+
| Senior Security Risk Owner (SSRO) | [Name] | | |
|
|
988
|
+
| Departmental Security Officer (DSO) | [Name] | | |
|
|
989
|
+
| Senior Information Risk Owner (SIRO) | [Name] | | |
|
|
990
|
+
| Data Protection Officer (DPO) | [Name] | | |
|
|
991
|
+
|
|
992
|
+
---
|
|
993
|
+
|
|
994
|
+
**Document Control**:
|
|
995
|
+
|
|
996
|
+
- **Version**: 1.0
|
|
997
|
+
- **Classification**: [OFFICIAL / OFFICIAL-SENSITIVE]
|
|
998
|
+
- **Last Reviewed**: [Date]
|
|
999
|
+
- **Next Review**: [Date - recommend quarterly]
|
|
1000
|
+
- **Document Owner**: [Name/Role]
|
|
1001
|
+
|
|
1002
|
+
## External References
|
|
1003
|
+
|
|
1004
|
+
> This section provides traceability from generated content back to source documents.
|
|
1005
|
+
> Follow citation instructions in the project's citation reference guide.
|
|
1006
|
+
|
|
1007
|
+
### Document Register
|
|
1008
|
+
|
|
1009
|
+
| Doc ID | Filename | Type | Source Location | Description |
|
|
1010
|
+
|--------|----------|------|-----------------|-------------|
|
|
1011
|
+
| *None provided* | — | — | — | — |
|
|
1012
|
+
|
|
1013
|
+
### Citations
|
|
1014
|
+
|
|
1015
|
+
| Citation ID | Doc ID | Page/Section | Category | Quoted Passage |
|
|
1016
|
+
|-------------|--------|--------------|----------|----------------|
|
|
1017
|
+
| — | — | — | — | — |
|
|
1018
|
+
|
|
1019
|
+
### Unreferenced Documents
|
|
1020
|
+
|
|
1021
|
+
| Filename | Source Location | Reason |
|
|
1022
|
+
|----------|-----------------|--------|
|
|
1023
|
+
| — | — | — |
|
|
1024
|
+
|
|
1025
|
+
---
|
|
1026
|
+
|
|
1027
|
+
**Generated by**: ArcKit `/arckit:secure` command
|
|
1028
|
+
**Generated on**: [DATE]
|
|
1029
|
+
**ArcKit Version**: [VERSION]
|
|
1030
|
+
**Project**: [PROJECT_NAME]
|
|
1031
|
+
**Model**: [AI_MODEL]
|