Skill Packages
Browse ready-made AI workflow skills for document elaboration, review, and structuring.
NIST SP 800-53 / CSF Crosswalk
Bidirectional crosswalk between NIST Cybersecurity Framework (CSF) 2.0 subcategories and SP 800-53 Rev 5 controls. Maps CSF subcategories to 800-53 controls and vice versa, identifies gaps in either direction, and produces a crosswalk document for dual-framework compliance.
Learn MoreNIST SP 800-53 Baseline Selector
Select and tailor an SP 800-53 Rev 5 control baseline based on FIPS 199 categorization and regulatory overlays (HIPAA, PCI-DSS, GDPR, SOX, FedRAMP, CMMC). Applies the appropriate Low/Moderate/High baseline, adds regulation-specific controls, and supports tailoring with documented justification. Produces tailored-control-catalog.json for all downstream skills.
Learn MoreNIST SP 800-53 Control Standard Author
Author implementation standards for individual NIST SP 800-53 controls. Each standard documents the control objective, implementation narrative, technology and tools, responsible roles, evidence requirements, and review frequency. Validates narrative coverage and quality across control families.
Learn MoreNIST SP 800-53 Family Policy Author
Author NIST SP 800-53 family-level policies (the -1 controls) for each control family. Produces structured policy documents with Purpose, Scope, Applicability, Policy Statements, Roles & Responsibilities, Compliance & Enforcement, Review Frequency, and Related Documents sections. Validates completeness and structure.
Learn MoreNIST SP 800-53 Gap Analysis
Conduct a gap analysis across the NIST SP 800-53 compliance program. Cross-references tailored control catalog against policies, standards, and mappings to identify coverage gaps. Prioritizes remediation by baseline level, regulatory requirement, and family criticality. Produces a gap analysis report with per-family breakdown and phased remediation roadmap.
Learn MoreNIST SP 800-53 Organization Profile
Build and validate the organizational context profile for NIST SP 800-53 Rev 5 compliance. Captures FIPS 199 security categorization (Confidentiality, Integrity, Availability impact levels), applicable regulations (HIPAA, PCI-DSS, GDPR, SOX, FedRAMP, FISMA, CMMC), existing frameworks, and authorization boundary. Validates completeness of categorization and scope for downstream baseline selection and control implementation.
Learn MoreNIST SP 800-53 Policy-Control Mapper
Map existing policy and standard documents to NIST SP 800-53 controls with AI-assisted quality scoring. Rates each mapping as High/Medium/Low confidence with documented justification. Identifies unmapped controls and low-quality mappings for remediation. Produces policy-control-mapping.json for gap analysis.
Learn MoreNordic AML/CFT — Enterprise-Wide Risk Assessment
Draft and validate the enterprise-wide AML/CFT risk assessment for Nordic supervisors. Covers inherent risk, control effectiveness, residual risk, and risk appetite per Joint ESA Guidelines and AMLD6.
Learn MoreNuclear Preliminary Safety Analysis Report (PSAR)
Draft and validate key chapters of the Preliminary Safety Analysis Report for nuclear facility licensing. Follows NUREG-0800 (Standard Review Plan) structure and IAEA GSR Part 4. Covers site characteristics, design criteria, safety analysis, and quality assurance.
Learn MoreOGCIO Data Maturity Assessment Plan
Write an assessment plan for an Ireland OGCIO Data Maturity self-assessment: scope, stakeholders, timeline, and approach aligned to the OGCIO step-by-step guide and DAMA-DMBoK.
Learn MoreOGCIO Data Maturity Findings and Report
Document findings and produce a report for an Ireland OGCIO Data Maturity assessment: evidence, maturity levels, gap analysis, and recommendations aligned to the OGCIO framework and DAMA-DMBoK.
Learn MoreOH&S Competence & Awareness (ISO 45001 Clauses 7.1–7.5)
Build the competence matrix, training plan, awareness program, communication procedure, and document control approach for ISO 45001:2018. Maps OH&S competencies to roles based on hazard exposure, creates structured training plans with effectiveness evaluation, defines internal and external communication procedures, and addresses worker awareness requirements.
Learn More