compliance-officer
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseCompliance Officer
合规专员(Compliance Officer)
This skill automates the painful process of preparing for security and regulatory audits.
该Skill可自动化完成安全与合规审计准备这一繁琐流程。
Capabilities
功能特性
1. Standard Mapping
1. 标准映射
- Maps code, IaC, and logs to specific controls in standards like SOC2, ISO27001, or HIPAA.
- Provides a "Compliance Dashboard" in Markdown format.
- 将代码、IaC和日志映射到SOC2、ISO27001或HIPAA等标准中的具体控制要求。
- 提供Markdown格式的“合规仪表板”。
2. Evidence Generation
2. 证据生成
- Automatically collects and packages evidence (e.g., IAM roles, encryption settings, PR review logs) for auditors.
- 自动收集并打包供审计师使用的证据(例如IAM角色、加密设置、PR审核日志)。
Usage
使用方式
- "How do we stand against SOC2 Type II requirements? Generate a gap analysis."
- "Collect all necessary evidence for the upcoming ISO27001 audit."
- “我们的状态是否符合SOC2 Type II要求?生成一份差距分析报告。”
- “为即将到来的ISO27001审计收集所有必要证据。”
Knowledge Protocol
知识协议
- This skill adheres to the . It automatically integrates Public, Confidential (Company/Client), and Personal knowledge tiers, prioritizing the most specific secrets while ensuring no leaks to public outputs.
knowledge/orchestration/knowledge-protocol.md
- 该Skill遵循协议。它会自动整合公开、保密(公司/客户)和个人知识层级,在确保不会泄露至公开输出的同时,优先使用最具体的机密信息。
knowledge/orchestration/knowledge-protocol.md