II.
Workflow overview
Reference · liveworkflow:regulatory-change-management
Regulatory Change Management overview
Manages the intake and organizational response to new or amended regulatory requirements -- monitoring regulatory feeds and industry association alerts for relevant changes, conducting initial impact assessment to determine affected business units and systems, assembling cross-functional working groups for gap analysis, developing compliance implementation plans with milestone timelines, coordinating policy and procedure updates, tracking evidence-collection for compliance demonstration, and reporting implementation progress to executive sponsors and regulators. Produces regulatory change impact assessment and compliance implementation plan. Excludes lobbying or regulatory advocacy.
Attributes
displayName
Regulatory Change Management
workflowKind
governance
triggerType
event-driven
typicalCadence
per-regulation
complexity
cross-team
description
Manages the intake and organizational response to new or amended
regulatory requirements -- monitoring regulatory feeds and industry
association alerts for relevant changes, conducting initial impact
assessment to determine affected business units and systems, assembling
cross-functional working groups for gap analysis, developing compliance
implementation plans with milestone timelines, coordinating policy and
procedure updates, tracking evidence-collection for compliance
demonstration, and reporting implementation progress to executive
sponsors and regulators. Produces regulatory change impact assessment and
compliance implementation plan. Excludes lobbying or regulatory advocacy.
Outgoing edges
applies_to_domain3
- domain:legal·DomainLegal
- domain:operations·DomainOperations
- domain:cybersecurity-grc·DomainCybersecurity GRC
involves_role3
- role:security-reviewer·RoleSecurity Reviewer
- role:engineering-manager·RoleEngineering Manager
- role:license-auditor·RoleLicense Auditor
performed_by_org_unit3
- org-unit:compliance-team·OrgUnitCompliance Team
- org-unit:legal-team·OrgUnitLegal Team
- org-unit:risk-management-team·OrgUnitRisk Management Team
requires_skill_area1
- skill-area:threat-modeling·SkillAreaThreat Modeling
triggers_responsibility2
- responsibility:security-review·ResponsibilitySecurity review
- responsibility:dependency-audit·ResponsibilityDependency audit
Incoming edges
None.