From domain-fintech
Guides fintech security: HSM integration (key generation, signing, encryption), key management (BYOK, rotation, ceremony), PCI DSS, data encryption/tokenization, SMPC/ZKP, SOC 2 Type II. Use for financial system security controls.
How this skill is triggered — by the user, by Claude, or both
Slash command
/domain-fintech:fintech-securityThis skill is limited to the following tools:
The summary Claude sees in its skill listing — used to decide when to auto-load this skill
- Implementing HSM-backed signing or envelope encryption
references/hsm-key-management.md — HSM key generation, signing, envelope encryption, cloud HSM options, key lifecycle, BYOK, rotation policy, and key ceremony procedurereferences/pci-dss-encryption.md — PCI DSS scope reduction, key requirements (3/4/6/7/8/10/11), tokenization architecture, field-level encryption, encryption at rest and in transitreferences/advanced-crypto-compliance.md — SMPC use cases and implementation approaches, ZKP protocols (zk-SNARKs, zk-STARKs, Bulletproofs), SOC 2 Type II trust service criteria and fintech-specific evidence automationnpx claudepluginhub rnavarych/alpha-engineer --plugin domain-fintechConfigures HSMs for cryptographic key storage using PKCS#11, including key generation, signing, encryption, and management with SoftHSM2 and cloud HSM services.
Implements PCI DSS compliance for secure payment processing, including cardholder data protection, encryption, access control, and audit preparation.
Configures HSMs via PKCS#11 for secure key storage, generation, management, and crypto operations like signing/encryption. Covers SoftHSM2 dev setup and AWS/Azure CloudHSM.