CISO Work Cycle Development Assistant

A specialized assistant for developing and maintaining the CISO Work Cycle platform - a sophisticated project management and visualization system designed for Chief Information Security Officers to track, analyze, and communicate cybersecurity initiative progress across their organization.

What This Skill Does

This skill provides expert guidance for working with the CISO Work Cycle codebase, a Next.js 13.5 application that visualizes cybersecurity project portfolios on an interactive maturity curve. It handles Linear issue integration, enforces strict git workflows, and maintains the project's design system and architecture.

Instructions

1. CRITICAL: Git Workflow and Linear Integration

**ALWAYS follow these git rules:**

**NEVER push directly to main** - all changes require pull requests

**ALWAYS create feature branches** using Linear's `gitBranchName` field

**NEVER guess branch names** - use `mcp__Linear__get_issue` to get the correct branch name

Branch format: `alex/for-[issue-number]-[kebab-case-title]`

**Once a PR is created, never reuse that branch** - create new branches for new work

**Linear Magic Words for Commits:**

Closing magic words (completes/closes issues):

close, closes, closed, closing

fix, fixes, fixed, fixing

resolve, resolves, resolved, resolving

complete, completes, completed, completing

Non-closing magic words (reference only):

ref, refs, references

part of, related to, contributes to

toward, towards

**Commit message format:**

Include Linear issue reference with magic word

Include line numbers for complex document changes

Example: "Completes FOR-74: Add financial quantification and navigation to BISOPRO-02 Problem Statement"

Example with lines: "Completes FOR-76: Transform BISOPRO-06 (lines 3-26, 30-55, 160-236)"

2. Linear Issue Management

**Issue Title Rules:**

**NEVER include "FOR-##:" prefixes in Linear issue titles**

Use clean, professional descriptions that stand alone

Example: "Visual Framework Standardization" NOT "FOR-90: Visual Framework Standardization"

**Comprehensive Issue Querying:**

When searching for issues, use multiple strategies:

1. Search by team ID with pagination: `mcp__Linear__list_issues` with `teamId` and `limit`

2. Search by project ID: `mcp__Linear__list_issues` with `projectId`

3. Search by query terms: Use `query` parameter

4. For large result sets, use pagination with `after` parameter

5. If "exceeds maximum tokens" error, use smaller `limit` values (10-25)

**Issue Update Verification:**

After updating titles, fetch the issue again to confirm changes

For batch updates, search comprehensively first, then update systematically

Track updated issues to avoid missing any

**Project Context:**

Project: "CISO Work Cycle"

Team: "FS-ISAC Collab"

Always filter by correct project when searching

3. Project Architecture

**Tech Stack:**

Next.js 13.5 + TypeScript + Tailwind CSS

Custom SVG rendering for visualizations

App Router architecture

**Code Organization:**

```

app/ # Next.js App Router

├── layout.tsx # Root layout

├── page.tsx # Main dashboard

└── globals.css # Global styles

components/

├── features/ # Core business logic (ProgressCurve.tsx)

├── layout/ # Layout components (Header, Sidebar)

└── ui/ # Reusable UI primitives

lib/

├── data.ts # Project data and types (centralized data model)

└── utils.ts # Utility functions

```

**Key Components:**

**ProgressCurve.tsx**: Core visualization with complex SVG math for curve positioning

**lib/data.ts**: Centralized project data with TypeScript interfaces

**Data Model:**

Projects have four categories:

Unplanned Work (emergency/reactive)

IS Projects (information security)

IT/Business Projects (cross-functional)

Business-as-Usual (operational)

Each project includes:

Position on curve (0-1 float)

Risk level (L/M/H)

Complexity rating (L/M/H)

Timeline with visual markers (○●△▲⊗)

4. Design System

**Color System:**

High risk/complexity: `#fee2e2` (bg), `#991b1b` (text)

Medium: `#fef3c7` (bg), `#92400e` (text)

Low: `#dcfce7` (bg), `#166534` (text)

**Spacing System (8px grid):**

Base padding: 10px

Small breakpoint: 12px

Large breakpoint: 15px

General spacing: multiples of 4px or 8px (4, 8, 16, 24, 32, 48)

**Typography:**

Tooltips: Bold titles, medium category text

Badges: Semibold text

Responsive sizing via component dimension configs

**Component Patterns:**

Border radius: 8-10px

Shadows: `rgba(0, 0, 0, 0.1)` with `blur(4px)`

SVG text: Use `dominantBaseline` for alignment

5. Development Workflow

**Commands:**

```bash

npm run dev # Development server

npm run build # Production build

npm start # Production server

npm run lint # Linting

```

**Adding Projects:**

Edit `lib/data.ts` and add objects to projects array with required fields: name, position, category, risk, complexity, timeline.

6. When Working on Tasks

1. **Before starting:** Check Linear for issue details and correct branch name using `mcp__Linear__get_issue`

2. **Create feature branch:** Use exact branch name from Linear's `gitBranchName` field

3. **Make changes:** Follow design system, maintain responsive patterns, use TypeScript strictly

4. **Commit:** Use Linear magic words and include line numbers for complex changes

5. **Push to feature branch:** Never push directly to main

6. **Create PR:** All changes must go through pull requests

7. **Verify Linear update:** If closing an issue, confirm it updated correctly

Examples

**Example 1: Starting work on a Linear issue**

```bash

Get issue details and branch name

mcp__Linear__get_issue FOR-129

Create feature branch with Linear's exact branch name

git checkout -b alex/for-129-create-visual-strategic-framework

Make changes, then commit with magic word

git commit -m "Completes FOR-129: Create visual strategic framework component with SVG rendering (lines 45-230)"

Push to feature branch

git push origin alex/for-129-create-visual-strategic-framework

Create PR to main

gh pr create --base main --title "FOR-129: Create visual strategic framework" --body "Closes FOR-129"

```

**Example 2: Updating multiple Linear issue titles**

```bash

Search comprehensively by team with pagination

mcp__Linear__list_issues --teamId "FS-ISAC Collab" --limit 25

Update each issue (removing "FOR-##:" prefixes)

mcp__Linear__update_issue FOR-90 --title "Visual Framework Standardization"

Verify update

mcp__Linear__get_issue FOR-90

```

**Example 3: Adding a new project to the visualization**

```typescript

// In lib/data.ts, add to projects array:

{

name: "Zero Trust Architecture",

position: 0.65,

category: "is-project",

risk: "H",

complexity: "H",

timeline: "○●△▲⊗ Q2-Q4 2024"

}

```

Important Notes

This is a specialized cybersecurity platform for CISOs - maintain professional terminology

The visualization uses complex SVG math - be careful when modifying ProgressCurve.tsx

All data is centralized in lib/data.ts - never scatter data definitions

Mobile-first responsive design is critical - test all breakpoints

Linear integration is strict - never bypass the git workflow rules

The 8px spacing grid must be maintained throughout the UI

CISO Work Cycle Development Assistant

CISO Work Cycle Development Assistant

What This Skill Does

Instructions

1. CRITICAL: Git Workflow and Linear Integration

2. Linear Issue Management

3. Project Architecture

4. Design System

5. Development Workflow

6. When Working on Tasks

Examples

Get issue details and branch name

Create feature branch with Linear's exact branch name

Make changes, then commit with magic word

Push to feature branch

Create PR to main

Search comprehensively by team with pagination

Update each issue (removing "FOR-##:" prefixes)

Verify update

Important Notes

Reviews (0)