complianceiq-audit-mcp
v0.2.0
Published
MCP server for compliance audit report generation — create audit findings, evidence checklists, risk assessments, and remediation plans across SOC2, ISO 27001, HIPAA, GDPR, PCI-DSS frameworks
Maintainers
crawdeReadme
complianceiq-audit-mcp
MCP server for compliance audit report generation. Generate audit findings, evidence checklists, risk assessments, and remediation plans across SOC2, ISO 27001, HIPAA, GDPR, and PCI-DSS frameworks.
Features
- generate_audit_report — Full audit report with executive summary, findings by severity, and remediation roadmap
- evidence_checklist — Comprehensive evidence collection plan with items, frequencies, owners, and formats per framework
- risk_assessment — Risk scoring across control domains with visual risk bars and prioritized action items
- remediation_plan — Step-by-step remediation instructions for specific findings with effort estimates and success criteria
Supported Frameworks
| Framework | Findings | Evidence Items | |-----------|----------|---------------| | SOC 2 Type II | 5 | 10 | | ISO 27001:2022 | 3 | 5 | | HIPAA Security Rule | 3 | 5 | | GDPR | 3 | 5 | | PCI-DSS v4.0 | 3 | 5 |
Installation
npx complianceiq-audit-mcpOr install globally:
npm install -g complianceiq-audit-mcpUsage with Claude Desktop
{
"mcpServers": {
"complianceiq-audit": {
"command": "npx",
"args": ["-y", "complianceiq-audit-mcp"]
}
}
}Examples
"Generate a SOC2 audit report for my SaaS startup"
"What evidence do I need to collect for HIPAA?"
"Run a PCI-DSS risk assessment"
"Create a remediation plan for finding SOC2-F001"
"Show me all critical GDPR findings"About ComplianceIQ
ComplianceIQ is an AI-powered compliance platform that generates audit-ready policy documents, runs gap assessments, and helps organizations achieve compliance faster.
License
MIT