Templates

Practical security artifacts — incident response, vulnerability triage, headers, executive briefings, MFA rollout. Markdown source plus PDF download.

Downloads

Templates & Checklists

Practical artifacts to drop into a runbook, ticket, or board pack. Each template ships as Markdown (copy to clipboard or paste into Confluence/Notion) and as a printable PDF.

Governance

Executive Cyber Briefing

Two-page monthly or quarterly cybersecurity briefing template for non-technical executives, board members, and business owners.

Open → PDF ↓

Web security

HTTP Security Headers Checklist

Production-ready checklist of HTTP security headers — HSTS, CSP, X-Content-Type-Options, Referrer-Policy, Permissions-Policy, cookie flags, and headers to remove.

Open → PDF ↓

Incident response

Incident Response Checklist

Working checklist for the SANS / NIST PICERL incident response lifecycle — preparation, identification, containment, eradication, recovery, lessons learned.

Open → PDF ↓

Identity

MFA Rollout Checklist

Phased MFA rollout plan — privileged accounts, identity provider, VPN, SaaS, and customer-facing apps — with factor priorities, common pitfalls, and maintenance cadence.

Open → PDF ↓

Vulnerability management

Vulnerability Triage Worksheet

Worksheet for triaging a CVE — severity inputs, exposure questions, compensating controls, and a decision matrix that combines CVSS, EPSS, and CISA KEV.

Open → PDF ↓

Source: templates are versioned at github.com/djbsec/djbsec.github.io. Spot something to improve? Open an issue or PR.