| name | security-compliance |
| description | Security compliance frameworks and governance for regulatory adherence |
| sasmp_version | 1.3.0 |
| production_grade | true |
| last_updated | 2025-01-01 |
| bonded_agent | 04-compliance-specialist |
| bond_type | PRIMARY_BOND |
| bond_strength | 1 |
| operations | [object Object] |
| validation | [object Object] |
| retry | [object Object] |
| errors | [object Object] |
Security Compliance Skill
Purpose: Regulatory compliance and security governance.
Operations Overview
| Operation |
Input |
Output |
| assess_control |
id, framework |
status, gaps |
| perform_gap_analysis |
framework, state |
score, roadmap |
| generate_evidence |
controls |
matrix, templates |
| map_controls |
source, targets |
mapping |
| assess_risk |
gaps |
scores, treatment |
Supported Frameworks
| Framework |
Version |
Controls |
| ISO 27001 |
2022 |
93 |
| SOC 2 |
Type II |
TSC |
| GDPR |
- |
99 |
| PCI DSS |
4.0 |
12 |
| NIST CSF |
2.0 |
6 functions |
Control Mapping
| Area |
ISO |
SOC2 |
NIST |
| Access |
A.5.15 |
CC6.1 |
PR.AC |
| Encrypt |
A.8.24 |
CC6.7 |
PR.DS |
| Logging |
A.8.15 |
CC7.2 |
DE.CM |
Troubleshooting
Assessment Failed
│
├─► E_UNKNOWN_FRAMEWORK → Use supported framework
└─► E_SCOPE_UNDEFINED → Define scope first
Version History
| Version |
Date |
Changes |
| 2.0.0 |
2025-01-01 |
Production-grade upgrade |
| 1.0.0 |
2024-12-29 |
Initial release |