bigid

Generates a compliance evidence report (PDF) using live data from the BigID MCP, mapped against a chosen regulation. Use this skill whenever someone asks to produce, generate, prove, or document compliance using BigID — for any regulation including EO 14117, GDPR, HIPAA, or a custom org policy. Trigger phrases include: "compliance report", "prove we comply", "show compliance posture", "audit evidence from BigID", "data privacy compliance report", "generate a BigID report for [regulation]", or any mention of BigID alongside a regulation or compliance requirement. Always use this skill when BigID is connected and a compliance report or evidence document is the goal, even if the user doesn't name a specific regulation yet.

BigID Know Your Data (KYD) expert assistant for Data Governance, Security, Privacy, and Compliance. Activate this skill whenever the user asks ANYTHING related to BigID, data sources, PII, policy violations, data catalog, data governance, privacy compliance, DSAR, RoPA, PIA, data inventory, sensitivity classification, data security posture, or remediation of data risks. Also trigger for questions like "what data do we have", "show me violations", "which sources have PII", "know your data", "KYD", "data risk", "open Jira for data issue", or any request to investigate, label, mask, delete, or move data objects. Use this skill proactively for any BigID-related question, even if phrased casually or without explicitly mentioning "BigID".

Generates a BigID-branded NIST Privacy Framework compliance report (PPTX) by pulling live data from BigID — risk cases, privacy risks, controls, and framework status. Use this skill whenever the user asks to refresh, regenerate, update, or create their privacy posture report, NIST-P report, compliance deck, or privacy dashboard. Also trigger for: "update my privacy report", "refresh the posture deck", "how's our NIST-P score", "give me a compliance slide deck", "show me findings per control", or "break down the NIST controls in detail". The skill produces a ~35-slide detailed deck: executive summary, a dark section-header per NIST-P function, one drilldown slide per control listing every open risk case (case ID, data source, risk score, controls count), and a prioritized remediation roadmap — all sourced live from BigID.

Triages BigID DSPM (Data Security Posture Management) security cases and surfaces the highest-risk ones to act on first — prioritizing credential-exposure cases (passwords, tokens, keys, secrets) above everything else. Use this skill whenever the user asks about their security posture, DSPM cases, "what should I fix first", "top security cases", "what's my biggest data risk", critical findings, exposed passwords/keys/secrets, open-access sensitive data, or wants to act on a security case. Always finish by proposing a concrete action: open a Jira or ServiceNow ticket, assign the case to a user, change case status (acknowledge/silence/resolve), Send to Cortex (XSOAR), or trigger object-level remediation (tombstone, archive/move) — choosing only from the integrations and actions that are actually connected/configured. Pulls live data from the BigID MCP Production server. If the user asks about specific objects/files/items behind a case, drill into the Data Catalog API.

BigID MCP Server — connects to your BigID environment for data governance, privacy, and security operations