From compliance-os
/cs:compliance-readiness <program> — Multi-framework compliance officer 6-question forcing interrogation of any compliance program. Use before starting a new framework, planning the annual audit calendar, or preparing for certification stage 1.
How this skill is triggered — by the user, by Claude, or both
Slash command
/compliance-os:compliance-readinessThe summary Claude sees in its skill listing — used to decide when to auto-load this skill
**Command:** `/cs:compliance-readiness <program>`
Command: /cs:compliance-readiness <program>
The multi-framework compliance officer pressure-tests any compliance program. Six questions before any new-framework commitment, audit cycle planning, or certification readiness sign-off.
No framework selector run, no defensible scope.
framework_selector.py with company profileSingle evidence -> N controls = the cornerstone of multi-framework efficiency.
cross_framework_mapper.py with enabled frameworksJoint ownership without accountability is the most common cause of stale evidence.
evidence_pool_generator.py for the artefact inventorySurveillance audits stacking in the same week is a smell.
No mock audit, no readiness signal.
audit_simulator.py with framework + scopeEach framework wants its own management review; an integrated review (per Annex SL) saves 5x exec time.
# 1. Framework selection
python ../../skills/compliance-os/scripts/framework_selector.py profile.json
# 2. Cross-framework overlap
python ../../skills/compliance-os/scripts/cross_framework_mapper.py program.json
# 3. Evidence pool consolidation
python ../../skills/compliance-os/scripts/evidence_pool_generator.py program.json
# 4. Mock audit (per framework)
python ../../skills/compliance-os/scripts/audit_simulator.py scope.json
# Compliance Readiness: <program>
**Date:** YYYY-MM-DD
## The Decision Being Made
[framework-set | audit-calendar | certification-readiness | evidence-consolidation]
## Framework Set
- Applicable: <list>
- Binding (regulations): <count>
- Certifiable: <count>
- Missing dependencies: <list>
## Cross-Framework Overlap
- Total merged controls in scope: N
- High-leverage artefacts (≥ 5 mappings): M
- Top reuse opportunities: <top 5 artefacts>
## Evidence Pool
- Artefacts in catalog: N
- High-leverage count: M
- Stale evidence rate: X%
- Unowned artefacts: K
## Audit Calendar
- Frameworks scheduled this year: <list>
- Auditor independence respected: Y/N
- Conflicts: <list>
## Mock Audit Results (per framework)
- <framework>: total findings N, critical X%, observation Y%, healthy distribution: Y/N
## Verdict
🟢 READY | 🟡 STAGE-2-CANDIDATE | 🔴 NOT-READY
## Top 3 Actions
[3 concrete next steps with owners + dates]
/cs:aims-audit — for ISO 42001-specific forcing questions/cs:ai-act-readiness — for EU AI Act-specific forcing questions/cs:ciso-review — for cybersecurity strategy/cs:caio-review — for executive AI strategy/cs:gc-review — for novel-case legal review/cs:decide — to log the verdict/cs:freeze 30 — on certification commitments (multi-year financial impact)cs-compliance-officercompliance-osra-qm-team/skills/iso42001-specialist/, ra-qm-team/skills/eu-ai-act-specialist/, ra-qm-team/skills/information-security-manager-iso27001/, ra-qm-team/skills/soc2-compliance/, ra-qm-team/skills/gdpr-dsgvo-expert/Version: 1.0.0
npx claudepluginhub motivatedc-creator/saafy --plugin compliance-osSets up isolated workspaces using native worktree tools or git worktree fallback. Use before starting feature work to protect the current branch.
2plugins reuse this skill
First indexed Jun 30, 2026