Screen guide
Regulation & Risk Management
Track regulatory obligations and connect them to real fleet risk and the mitigations that close them.
This screen turns "are we compliant?" into something measurable: each regulatory requirement is mapped to the assets it covers, the risks it addresses, and the mitigations in progress — so an audit becomes a query, not a fire drill.
The summary numbers
The KPI row at the top gives the headline counts — total requirements tracked, how many are met, how many are at risk, and how many are overdue. Treat them as a starting filter, then drill into the list below.
How obligations map to risk
- Each requirement links to the controls and assets that satisfy it.
- Gaps surface as risks with a severity — Critical through Low.
- Each risk carries its mitigation: owner, status and due date.
- Closing the mitigation updates the requirement's status automatically — one source of truth.
For the CISO, this is the audit-readiness screen: control evidence, open findings and aging all in one place, mappable to SOC 2, ISO 27001, NIST CSF and EASA Part-IS.
Who uses this
Primarily CISO and GRC. Fleet and MRO reference it when a regulatory obligation drives a maintenance or scheduling decision.