24 skills, organised by team
Every skill is a versioned Markdown file in the repository. Vera, your projects, and the Master Audit all draw from the same source.
Developer
SDLC, specs, releases, code review, ADRs.
Architecture Decisions
ADR format — when an architecture decision must be recorded, what an ADR contains, where it lives.
Code Review
How we review SPYN code — what to look for, what to ignore, how to disagree well. Lead reviewer is Ahmed Mahmood Khan.
Functional Test Cases
Non-technical tester checklists. The Welcome Screen pattern — every screen, every flow, every state.
Git Workflow
Trunk-based development across the three SPYN repos. Short-lived branches, conventional commits, protected main.
Release Notes
Customer-facing release notes. The core rule — if it's not written here, it wasn't delivered.
Requirements Specification
The 10-section format every requirement spec must follow. Specs are drafted with AI assistance from screenshots, videos, or Figma frames and verified by humans.
SDLC Process
Our end-to-end software development lifecycle — idea through production — with explicit gates between phases and CMMI Level 2 alignment.
Technical Test Cases
Load, performance, and security testing owned by developers. The complement to functional tests.
Legal
GDPR, EU AI Act, DPAs — what we owe regulators.
Data Processing Agreements
When DPAs are required, who we need them with, and how we keep them current.
EU AI Act
Risk-based obligations for SPYN's AI Diaries and System Users — including Article 6 and Article 50 specifics.
GDPR Compliance
How SPYN handles personal data under the EU General Data Protection Regulation. AI-generated content is personal data too.
Compliance
Data classification, incident response, audit posture.
Data Classification
Four-tier classification — Public, Internal, Confidential, Restricted — mapped to what SPYN actually handles.
Incident Response
The 72-hour breach clock, the escalation chain, and the monthly tabletop that keeps us ready.
HR
Hiring, onboarding, RACI, role profiles, candidate tests.
Candidate Tests
Standardised practical tests per role with a 1-5 rubric and explicit pass criteria. Outputs feed directly into the interview decision.
Interview Templates
Screening (15–20 min), main (45–75 min), and practical test interview stages. Same 1-5 rubric, same pass criteria.
Onboarding
A predictable first 30 days for every new hire at Media Tech — paperwork, access, first contribution to SPYN.
RACI Model
Who's Responsible, Accountable, Consulted, and Informed for every kind of work at Media Tech.
Resource Profiles
What every role at Media Tech looks like — skills, experience, must-have, nice-to-have. The source of truth for hiring.
Project Management
CMMI Level 2, risk register, project monitoring.
CMMI Level 2
The seven Level 2 process areas mapped to the SPYN artifacts that cover each one.
Risk Register
Per-project risk tracking — severity, owner, mitigation, review cadence. The artifact that turns "what could go wrong" into a managed plan.
Finance
Spending controls, investor materials.
Cap Table
Current equity holders, vesting schedules, and the option pool. Founders + PA only.
Expense Policy
What's reimbursable, what isn't, how to submit. Media Tech is a Danish entity; we operate in DKK and EUR.
Investor Materials
Investor one-pager and due-diligence pack — format, sections, refresh cadence, who owns each part.
Master
Meta-skills that maintain the rest of the library.