a68ae3a05e
* chore: update gitignore for audit reports and playwright cache * fix: add YAML frontmatter (name + description) to all SKILL.md files - Added frontmatter to 34 skills that were missing it entirely (0% Tessl score) - Fixed name field format to kebab-case across all 169 skills - Resolves #284 * chore: sync codex skills symlinks [automated] * fix: optimize 14 low-scoring skills via Tessl review (#290) Tessl optimization: 14 skills improved from ≤69% to 85%+. Closes #285, #286. * chore: sync codex skills symlinks [automated] * fix: optimize 18 skills via Tessl review + compliance fix (closes #287) (#291) Phase 1: 18 skills optimized via Tessl (avg 77% → 95%). Closes #287. * feat: add scripts and references to 4 prompt-only skills + Tessl optimization (#292) Phase 2: 3 new scripts + 2 reference files for prompt-only skills. Tessl 45-55% → 94-100%. * feat: add 6 agents + 5 slash commands for full coverage (v2.7.0) (#293) Phase 3: 6 new agents (all 9 categories covered) + 5 slash commands. * fix: Phase 5 verification fixes + docs update (#294) Phase 5 verification fixes * chore: sync codex skills symlinks [automated] * fix: marketplace audit — all 11 plugins validated by Claude Code (#295) Marketplace audit: all 11 plugins validated + installed + tested in Claude Code * fix: restore 7 removed plugins + revert playwright-pro name to pw Reverts two overly aggressive audit changes: - Restored content-creator, demand-gen, fullstack-engineer, aws-architect, product-manager, scrum-master, skill-security-auditor to marketplace - Reverted playwright-pro plugin.json name back to 'pw' (intentional short name) * refactor: split 21 over-500-line skills into SKILL.md + references (#296) * chore: sync codex skills symlinks [automated] * docs: update all documentation with accurate counts and regenerated skill pages - Update skill count to 170, Python tools to 213, references to 314 across all docs - Regenerate all 170 skill doc pages from latest SKILL.md sources - Update CLAUDE.md with v2.1.1 highlights, accurate architecture tree, and roadmap - Update README.md badges and overview table - Update marketplace.json metadata description and version - Update mkdocs.yml, index.md, getting-started.md with correct numbers * fix: add root-level SKILL.md and .codex/instructions.md to all domains (#301) Root cause: CLI tools (ai-agent-skills, agent-skills-cli) look for SKILL.md at the specified install path. 7 of 9 domain directories were missing this file, causing "Skill not found" errors for bundle installs like: npx ai-agent-skills install alirezarezvani/claude-skills/engineering-team Fix: - Add root-level SKILL.md with YAML frontmatter to 7 domains - Add .codex/instructions.md to 8 domains (for Codex CLI discovery) - Update INSTALLATION.md with accurate skill counts (53→170) - Add troubleshooting entry for "Skill not found" error All 9 domains now have: SKILL.md + .codex/instructions.md + plugin.json Closes #301 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat: add Gemini CLI + OpenClaw support, fix Codex missing 25 skills Gemini CLI: - Add GEMINI.md with activation instructions - Add scripts/gemini-install.sh setup script - Add scripts/sync-gemini-skills.py (194 skills indexed) - Add .gemini/skills/ with symlinks for all skills, agents, commands - Remove phantom medium-content-pro entries from sync script - Add top-level folder filter to prevent gitignored dirs from leaking Codex CLI: - Fix sync-codex-skills.py missing "engineering" domain (25 POWERFUL skills) - Regenerate .codex/skills-index.json: 124 → 149 skills - Add 25 new symlinks in .codex/skills/ OpenClaw: - Add OpenClaw installation section to INSTALLATION.md - Add ClawHub install + manual install + YAML frontmatter docs Documentation: - Update INSTALLATION.md with all 4 platforms + accurate counts - Update README.md: "three platforms" → "four platforms" + Gemini quick start - Update CLAUDE.md with Gemini CLI support in v2.1.1 highlights - Update SKILL-AUTHORING-STANDARD.md + SKILL_PIPELINE.md with Gemini steps - Add OpenClaw + Gemini to installation locations reference table Marketplace: all 18 plugins validated — sources exist, SKILL.md present Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * feat(product,pm): world-class product & PM skills audit — 6 scripts, 5 agents, 7 commands, 23 references/assets Phase 1 — Agent & Command Foundation: - Rewrite cs-project-manager agent (55→515 lines, 4 workflows, 6 skill integrations) - Expand cs-product-manager agent (408→684 lines, orchestrates all 8 product skills) - Add 7 slash commands: /rice, /okr, /persona, /user-story, /sprint-health, /project-health, /retro Phase 2 — Script Gap Closure (2,779 lines): - jira-expert: jql_query_builder.py (22 patterns), workflow_validator.py - confluence-expert: space_structure_generator.py, content_audit_analyzer.py - atlassian-admin: permission_audit_tool.py - atlassian-templates: template_scaffolder.py (Confluence XHTML generation) Phase 3 — Reference & Asset Enrichment: - 9 product references (competitive-teardown, landing-page-generator, saas-scaffolder) - 6 PM references (confluence-expert, atlassian-admin, atlassian-templates) - 7 product assets (templates for PRD, RICE, sprint, stories, OKR, research, design system) - 1 PM asset (permission_scheme_template.json) Phase 4 — New Agents: - cs-agile-product-owner, cs-product-strategist, cs-ux-researcher Phase 5 — Integration & Polish: - Related Skills cross-references in 8 SKILL.md files - Updated product-team/CLAUDE.md (5→8 skills, 6→9 tools, 4 agents, 5 commands) - Updated project-management/CLAUDE.md (0→12 scripts, 3 commands) - Regenerated docs site (177 pages), updated homepage and getting-started Quality audit: 31 files reviewed, 29 PASS, 2 fixed (copy-frameworks.md, governance-framework.md) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: audit and repair all plugins, agents, and commands - Fix 12 command files: correct CLI arg syntax, script paths, and usage docs - Fix 3 agents with broken script/reference paths (cs-content-creator, cs-demand-gen-specialist, cs-financial-analyst) - Add complete YAML frontmatter to 5 agents (cs-growth-strategist, cs-engineering-lead, cs-senior-engineer, cs-financial-analyst, cs-quality-regulatory) - Fix cs-ceo-advisor related agent path - Update marketplace.json metadata counts (224 tools, 341 refs, 14 agents, 12 commands) Verified: all 19 scripts pass --help, all 14 agent paths resolve, mkdocs builds clean. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix: repair 25 Python scripts failing --help across all domains - Fix Python 3.10+ syntax (float | None → Optional[float]) in 2 scripts - Add argparse CLI handling to 9 marketing scripts using raw sys.argv - Fix 10 scripts crashing at module level (wrap in __main__, add argparse) - Make yaml/prefect/mcp imports conditional with stdlib fallbacks (4 scripts) - Fix f-string backslash syntax in project_bootstrapper.py - Fix -h flag conflict in pr_analyzer.py - Fix tech-debt.md description (score → prioritize) All 237 scripts now pass python3 --help verification. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * fix(product-team): close 3 verified gaps in product skills - Fix competitive-teardown/SKILL.md: replace broken references DATA_COLLECTION.md → references/data-collection-guide.md and TEMPLATES.md → references/analysis-templates.md (workflow was broken at steps 2 and 4) - Upgrade landing_page_scaffolder.py: add TSX + Tailwind output format (--format tsx) matching SKILL.md promise of Next.js/React components. 4 design styles (dark-saas, clean-minimal, bold-startup, enterprise). TSX is now default; HTML preserved via --format html - Rewrite README.md: fix stale counts (was 5 skills/15+ tools, now accurately shows 8 skills/9 tools), remove 7 ghost scripts that never existed (sprint_planner.py, velocity_tracker.py, etc.) - Fix tech-debt.md description (score → prioritize) Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * release: v2.1.2 — landing page TSX output, brand voice integration, docs update - Landing page generator defaults to Next.js TSX + Tailwind CSS (4 design styles) - Brand voice analyzer integrated into landing page generation workflow - CHANGELOG, CLAUDE.md, README.md updated for v2.1.2 - All 13 plugin.json + marketplace.json bumped to 2.1.2 - Gemini/Codex skill indexes re-synced - Backward compatible: --format html preserved, no breaking changes Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: alirezarezvani <5697919+alirezarezvani@users.noreply.github.com> Co-authored-by: Leo <leo@openclaw.ai> Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
Regulatory Affairs & Quality Management Skills Collection
Complete suite of 12 world-class expert skills for HealthTech and MedTech organizations covering regulatory compliance, quality management, risk management, security, and audit excellence.
📚 Table of Contents
- Installation
- Overview
- Skills Architecture
- Complete Skills Catalog
- Quick Start Guide
- Team Structure Recommendations
- Regulatory Frameworks Covered
- Common Workflows
- Integration Points
- Success Metrics
⚡ Installation
Quick Install (Recommended)
Install all RA/QM skills with one command:
# Install all RA/QM skills to all supported agents
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team
# Install to Claude Code only
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team --agent claude
# Install to Cursor only
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team --agent cursor
Install Individual Skills
# Strategic Leadership
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/regulatory-affairs-head
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/quality-manager-qmr
# Quality Systems
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/quality-manager-qms-iso13485
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/capa-officer
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/quality-documentation-manager
# Risk & Security
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/risk-management-specialist
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/information-security-manager-iso27001
# Regulatory Specialists
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/mdr-745-specialist
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/fda-consultant-specialist
# Audit & Compliance
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/qms-audit-expert
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/isms-audit-expert
npx ai-agent-skills install alirezarezvani/claude-skills/ra-qm-team/gdpr-dsgvo-expert
Supported Agents: Claude Code, Cursor, VS Code, Copilot, Goose, Amp, Codex
Complete Installation Guide: See ../INSTALLATION.md for detailed instructions, troubleshooting, and manual installation.
🎯 Overview
This comprehensive skills collection provides world-class regulatory affairs and quality management capabilities for HealthTech and MedTech organizations navigating complex global regulatory landscapes.
What's Included:
- 12 expert-level skills across 5 specialized layers
- 36 Python automation tools for compliance tracking and reporting
- 36 comprehensive reference guides with regulatory frameworks
- Complete coverage of EU MDR, FDA, ISO 13485, ISO 27001, GDPR compliance
Key Benefits:
- 🚀 Accelerated Market Access - Optimized regulatory pathways and submission efficiency
- 🛡️ Reduced Compliance Risk - Systematic compliance across all jurisdictions
- ⭐ Quality Excellence - World-class QMS and continuous improvement capabilities
- 💰 Cost Optimization - Automated processes and efficient resource utilization
🏗️ Skills Architecture
The 12 skills are organized across 5 strategic layers:
Strategic Leadership Layer (2 Skills)
- Senior Regulatory Affairs Manager (Head of RA)
- Senior Quality Manager Responsible Person (QMR)
Core Quality Management Layer (3 Skills)
- Senior Quality Manager - QMS ISO 13485 Specialist
- Senior CAPA Officer
- Senior Quality Documentation Manager
Risk & Security Management Layer (2 Skills)
- Senior Risk Management Specialist (ISO 14971)
- Senior Information Security Manager (ISO 27001/27002)
Regulatory Specialization Layer (2 Skills)
- Senior MDR 2017/745 Specialist
- Senior FDA Consultant and Specialist
Audit & Compliance Layer (3 Skills)
- Senior QMS Audit Expert
- Senior ISMS Audit Expert
- Senior GDPR/DSGVO Expert
📦 Complete Skills Catalog
1. Senior Regulatory Affairs Manager (Head of Regulatory Affairs)
Package: regulatory-affairs-head.zip
Purpose: Strategic regulatory leadership and cross-functional coordination for market access.
Key Capabilities:
- Strategic regulatory planning and pathway analysis
- EU MDR and FDA submission management
- Global regulatory intelligence and coordination
- Cross-functional team leadership
- Regulatory risk assessment and mitigation
Python Tools:
regulatory_pathway_analyzer.py- Analyze optimal regulatory routessubmission_timeline_tracker.py- Track submission progress and milestonesregulatory_intelligence_monitor.py- Monitor global regulatory changes
Reference Guides:
eu-mdr-submission-guide.md- Complete EU MDR submission processfda-submission-guide.md- FDA pathway guidance (510k, PMA, De Novo)global-regulatory-pathways.md- International regulatory frameworks
Use When:
- Planning regulatory strategy for new products
- Managing major regulatory submissions
- Coordinating cross-functional regulatory activities
- Assessing regulatory risks and opportunities
2. Senior Quality Manager Responsible Person (QMR)
Package: quality-manager-qmr.zip
Purpose: Overall quality system responsibility and regulatory compliance oversight.
Key Capabilities:
- Management accountability for quality system
- Strategic quality leadership and planning
- Multi-jurisdictional compliance coordination
- Quality system effectiveness monitoring
- Regulatory authority liaison
Python Tools:
qms_effectiveness_monitor.py- Monitor QMS performance metricscompliance_dashboard_generator.py- Generate compliance status reportsmanagement_review_analyzer.py- Analyze management review data
Reference Guides:
qmr-responsibilities.md- Complete QMR role definitionquality-leadership-framework.md- Strategic quality managementmanagement-review-guide.md- Effective management reviews
Use When:
- Providing overall quality system oversight
- Coordinating regulatory compliance activities
- Leading management reviews
- Interfacing with regulatory authorities
3. Senior Quality Manager - QMS ISO 13485 Specialist
Package: quality-manager-qms-iso13485.zip
Purpose: ISO 13485 QMS implementation, maintenance, and optimization.
Key Capabilities:
- ISO 13485 QMS implementation and certification
- Design controls and document control systems
- Management review and continual improvement
- Internal audit program management
- Supplier quality management
Python Tools:
qms_compliance_checker.py- Check ISO 13485 compliance statusdesign_control_tracker.py- Track design control activitiesdocument_control_system.py- Manage controlled documents
Reference Guides:
iso-13485-implementation.md- Complete implementation guidedesign-controls-handbook.md- Design control best practicesinternal-audit-program.md- Audit planning and execution
Use When:
- Implementing or maintaining ISO 13485 QMS
- Managing design control processes
- Conducting internal audits
- Preparing for certification audits
4. Senior CAPA Officer
Package: capa-officer.zip
Purpose: Corrective and preventive action management within QMS.
Key Capabilities:
- CAPA investigation and management
- Root cause analysis (5 Whys, Fishbone, Fault Tree)
- Systematic problem-solving methodologies
- Effectiveness verification and trend analysis
- Continuous improvement program management
Python Tools:
capa_tracker.py- Track CAPA status and effectivenessroot_cause_analyzer.py- Facilitate root cause analysistrend_analysis_tool.py- Analyze quality trends and patterns
Reference Guides:
capa-process-guide.md- Complete CAPA processroot-cause-analysis-methods.md- RCA methodologieseffectiveness-verification.md- CAPA effectiveness assessment
Use When:
- Managing non-conformities and deviations
- Conducting root cause investigations
- Implementing corrective actions
- Verifying CAPA effectiveness
5. Senior Quality Documentation Manager
Package: quality-documentation-manager.zip
Purpose: Documentation control and review of all norms and appendices.
Key Capabilities:
- Regulatory documentation management
- Document control system operation
- Change control and version management
- Multi-jurisdictional document compliance
- Technical file and DHF maintenance
Python Tools:
document_version_control.py- Manage document versionstechnical_file_builder.py- Build regulatory technical filesdocument_compliance_checker.py- Verify document compliance
Reference Guides:
document-control-procedures.md- Document control best practicestechnical-file-requirements.md- Technical documentation requirementschange-control-process.md- Change management procedures
Use When:
- Managing controlled documentation
- Building technical files for submissions
- Implementing document control systems
- Coordinating multi-jurisdictional documentation
6. Senior Risk Management Specialist
Package: risk-management-specialist.zip
Purpose: ISO 14971 risk management throughout product lifecycle.
Key Capabilities:
- ISO 14971 risk management implementation
- Risk analysis and evaluation methodologies
- Risk control implementation and verification
- Post-production information analysis
- Benefit-risk assessment
Python Tools:
risk_register_manager.py- Manage product risk registersfmea_calculator.py- Calculate FMEA risk priority numbersrisk_control_tracker.py- Track risk control effectiveness
Reference Guides:
iso-14971-implementation.md- Complete risk management processrisk-analysis-methods.md- FMEA, FTA, HAZOP methodologiespost-production-monitoring.md- Post-market risk management
Use When:
- Implementing risk management per ISO 14971
- Conducting risk analyses (FMEA, FTA)
- Managing product risk files
- Evaluating benefit-risk profiles
7. Senior Information Security Manager (ISO 27001/27002)
Package: information-security-manager-iso27001.zip
Purpose: ISMS implementation and cybersecurity compliance for medical devices.
Key Capabilities:
- ISO 27001/27002 ISMS implementation
- Medical device cybersecurity (IEC 62443, FDA guidance)
- Security controls and risk assessment
- Healthcare data protection (HIPAA, GDPR)
- Security incident response management
Python Tools:
isms_compliance_checker.py- Check ISO 27001 compliancesecurity_risk_assessor.py- Assess cybersecurity risksvulnerability_tracker.py- Track security vulnerabilities
Reference Guides:
iso-27001-implementation.md- ISMS implementation guidemedical-device-cybersecurity.md- Device cybersecurity requirementssecurity-controls-framework.md- ISO 27002 controls implementation
Use When:
- Implementing ISO 27001 ISMS
- Assessing medical device cybersecurity
- Managing security incidents
- Ensuring HIPAA/GDPR security compliance
8. Senior MDR 2017/745 Specialist
Package: mdr-745-specialist.zip
Purpose: EU MDR compliance expertise and consulting.
Key Capabilities:
- EU MDR 2017/745 interpretation and implementation
- Device classification and conformity assessment
- Technical documentation and clinical evidence
- UDI system implementation
- EUDAMED registration and updates
Python Tools:
mdr_compliance_checker.py- Check MDR compliance statusclassification_analyzer.py- Support device classification decisionsudi_generator.py- Generate and validate UDI codes
Reference Guides:
mdr-requirements-overview.md- Complete MDR requirementsclinical-evaluation-guide.md- Clinical evidence requirementstechnical-documentation-mdr.md- MDR technical file requirements
Use When:
- Preparing for EU MDR compliance
- Classifying medical devices per MDR
- Building MDR technical documentation
- Managing UDI and EUDAMED registration
9. Senior FDA Consultant and Specialist
Package: fda-consultant-specialist.zip
Purpose: FDA submission pathways and QSR compliance.
Key Capabilities:
- FDA submission pathways (510k, PMA, De Novo)
- QSR 21 CFR Part 820 compliance
- Premarket submissions and clearances
- HIPAA requirements for medical devices
- FDA cybersecurity guidance implementation
Python Tools:
fda_submission_packager.py- Package FDA submissionsqsr_compliance_checker.py- Check QSR compliancepredicate_device_analyzer.py- Analyze substantial equivalence
Reference Guides:
fda-submission-pathways.md- 510k, PMA, De Novo guidanceqsr-820-compliance.md- QSR requirements and implementationfda-cybersecurity-guide.md- FDA cybersecurity requirements
Use When:
- Planning FDA regulatory strategy
- Preparing 510(k) or PMA submissions
- Implementing QSR 21 CFR 820
- Addressing FDA cybersecurity requirements
10. Senior QMS Audit Expert
Package: qms-audit-expert.zip
Purpose: Internal and external QMS auditing expertise.
Key Capabilities:
- ISO 13485 audit program management
- Internal audit planning and execution
- External audit coordination and support
- Nonconformity management and CAPA coordination
- Audit report generation and follow-up
Python Tools:
audit_planner.py- Plan and schedule QMS auditsfinding_tracker.py- Track audit findings and CAPAsaudit_report_generator.py- Generate comprehensive audit reports
Reference Guides:
audit-program-management.md- Audit planning and schedulingaudit-execution-checklist.md- Audit procedures and checklistsnonconformity-management.md- Finding management and CAPA
Use When:
- Planning internal audit programs
- Conducting ISO 13485 audits
- Preparing for certification audits
- Managing audit findings and CAPAs
11. Senior ISMS Audit Expert
Package: isms-audit-expert.zip
Purpose: Information security management system auditing.
Key Capabilities:
- ISO 27001 audit expertise
- Security controls assessment
- Cybersecurity compliance verification
- Risk-based audit planning
- Certification audit support
Python Tools:
isms_audit_planner.py- Plan ISO 27001 auditssecurity_controls_assessor.py- Assess security control effectivenessisms_finding_tracker.py- Track security audit findings
Reference Guides:
iso-27001-audit-guide.md- ISMS audit proceduressecurity-controls-assessment.md- Control testing methodologiesisms-certification-preparation.md- Certification audit readiness
Use When:
- Conducting ISMS audits
- Assessing security controls
- Preparing for ISO 27001 certification
- Managing security compliance
12. Senior GDPR/DSGVO Expert
Package: gdpr-dsgvo-expert.zip
Purpose: EU GDPR and German DSGVO compliance and auditing.
Key Capabilities:
- GDPR/DSGVO compliance assessment
- Privacy impact assessments (DPIA)
- Data protection planning and implementation
- Medical device privacy compliance
- Data breach management and reporting
Python Tools:
gdpr_compliance_checker.py- Check GDPR compliance statusdpia_generator.py- Generate data protection impact assessmentsdata_breach_reporter.py- Manage breach notification workflows
Reference Guides:
gdpr-compliance-framework.md- Complete GDPR requirementsdpia-methodology.md- Privacy impact assessment processmedical-device-privacy.md- Privacy requirements for medical devices
Use When:
- Assessing GDPR compliance
- Conducting privacy impact assessments
- Managing personal data in medical devices
- Responding to data breaches
🚀 Quick Start Guide
Step 1: Identify Your Needs
Building a New HealthTech/MedTech Company? → Start with: Regulatory Affairs Head + QMR + QMS ISO 13485 Specialist
Preparing for EU Market? → Focus on: MDR 2017/745 Specialist + Risk Management Specialist + QMS ISO 13485
Preparing for US Market? → Focus on: FDA Consultant + QMS ISO 13485 + Risk Management Specialist
Implementing Quality Systems? → Start with: QMR + QMS ISO 13485 + CAPA Officer + Quality Documentation Manager
Security & Privacy Focus? → Focus on: Information Security Manager + GDPR Expert + ISMS Audit Expert
Step 2: Download Skills
Each skill is packaged as a .zip file for easy distribution:
# Extract a skill package
unzip regulatory-affairs-head.zip
cd regulatory-affairs-head
# Explore the structure
ls -la
# SKILL.md - Main documentation
# scripts/ - Python automation tools
# references/ - Regulatory guidance documents
Step 3: Use the Tools
# Read the skill documentation
cat SKILL.md
# Check available scripts
ls scripts/
python scripts/regulatory_pathway_analyzer.py --help
# Review reference materials
ls references/
cat references/eu-mdr-submission-guide.md
Step 4: Integrate into Workflows
- Upload SKILL.md to Claude AI for expert guidance
- Use Python scripts for compliance tracking
- Follow reference guides for regulatory processes
- Customize tools for your specific workflows
👥 Team Structure Recommendations
Startup/Small Organization (1-3 people)
Core Team:
- QMR (also handles RA Head responsibilities)
- QMS ISO 13485 Specialist (handles CAPA, documentation)
- External consultant for MDR/FDA specialization
Coverage: Basic compliance, suitable for single-product companies
Scale-Up Organization (4-8 people)
Recommended Team:
- Regulatory Affairs Head - Strategic leadership
- QMR - Quality system oversight
- QMS ISO 13485 Specialist - QMS maintenance
- CAPA Officer - Problem management
- Risk Management Specialist - Product risk management
- MDR or FDA Specialist (based on target market)
- QMS Audit Expert - Internal audits
- Quality Documentation Manager - Document control
Coverage: Complete QMS with specialized regulatory capabilities
Enterprise Organization (8-15+ people)
Full Team:
Strategic Layer:
- Regulatory Affairs Head
- QMR
Quality Core: 3. QMS ISO 13485 Specialist (×1-2) 4. CAPA Officer (×1-2) 5. Quality Documentation Manager (×1-2)
Risk & Security: 6. Risk Management Specialist (×1-2) 7. Information Security Manager 8. GDPR Expert
Regulatory Specialists: 9. MDR 2017/745 Specialist 10. FDA Consultant
Audit & Compliance: 11. QMS Audit Expert (×1-2) 12. ISMS Audit Expert
Coverage: Complete regulatory and quality capabilities for multiple products and markets
🌍 Regulatory Frameworks Covered
European Union
- ✅ MDR 2017/745 - Medical Device Regulation (complete compliance)
- ✅ ISO 13485 - Medical device quality management systems
- ✅ ISO 14971 - Risk management for medical devices
- ✅ ISO 27001/27002 - Information security management
- ✅ GDPR - General Data Protection Regulation
- ✅ DSGVO - German data protection law
United States
- ✅ FDA 21 CFR Part 820 - Quality System Regulation
- ✅ FDA 510(k) - Premarket notification pathway
- ✅ FDA PMA - Premarket approval
- ✅ FDA De Novo - Novel device classification
- ✅ HIPAA - Healthcare data privacy
- ✅ FDA Cybersecurity - Medical device cybersecurity requirements
International Standards
- ✅ ISO 13485:2016 - Medical device QMS
- ✅ ISO 14971:2019 - Risk management
- ✅ ISO 27001:2022 - Information security
- ✅ IEC 62443 - Industrial cybersecurity
- ✅ IEC 62304 - Medical device software lifecycle
📋 Common Workflows
Workflow 1: New Product Regulatory Strategy
# Step 1: Analyze regulatory pathways
cd regulatory-affairs-head
python scripts/regulatory_pathway_analyzer.py --product "AI diagnostic tool" --markets "EU,US"
# Step 2: Classify device
cd ../mdr-745-specialist
python scripts/classification_analyzer.py --device-type "software" --intended-use "diagnosis"
# Step 3: Assess risks
cd ../risk-management-specialist
python scripts/risk_register_manager.py --product "AI diagnostic tool" --init
# Step 4: Plan submission timeline
cd ../regulatory-affairs-head
python scripts/submission_timeline_tracker.py --pathway "510k" --target-date "2026-06-01"
Workflow 2: QMS Implementation
# Step 1: Assess current state
cd quality-manager-qms-iso13485
python scripts/qms_compliance_checker.py --organization-profile profile.yaml
# Step 2: Implement document control
cd ../quality-documentation-manager
python scripts/document_version_control.py --setup --vault ./qms-docs
# Step 3: Setup CAPA system
cd ../capa-officer
python scripts/capa_tracker.py --init --database capa.db
# Step 4: Plan internal audits
cd ../qms-audit-expert
python scripts/audit_planner.py --year 2026 --scope "all-processes"
Workflow 3: EU MDR Submission
# Step 1: Verify MDR compliance
cd mdr-745-specialist
python scripts/mdr_compliance_checker.py --product-folder ./product-x
# Step 2: Build technical documentation
cd ../quality-documentation-manager
python scripts/technical_file_builder.py --standard mdr --output ./tech-file
# Step 3: Generate UDI
cd ../mdr-745-specialist
python scripts/udi_generator.py --manufacturer "Company" --device "Product X"
# Step 4: Compile clinical evidence
cd ../regulatory-affairs-head
python scripts/submission_timeline_tracker.py --pathway "mdr-ce-mark" --update "clinical-evaluation-complete"
Workflow 4: Security & Privacy Compliance
# Step 1: Assess ISMS compliance
cd information-security-manager-iso27001
python scripts/isms_compliance_checker.py --organization ./company-profile.yaml
# Step 2: Conduct DPIA
cd ../gdpr-dsgvo-expert
python scripts/dpia_generator.py --processing-activity "patient-data-analytics"
# Step 3: Audit security controls
cd ../isms-audit-expert
python scripts/security_controls_assessor.py --scope "all-controls"
# Step 4: Track vulnerabilities
cd ../information-security-manager-iso27001
python scripts/vulnerability_tracker.py --scan-results ./security-scan.json
🔗 Integration Points
Cross-Functional Dependencies
Regulatory Affairs ↔ Quality Management:
- Submission readiness reviews
- Design change assessments
- Post-market surveillance coordination
Risk Management ↔ All Teams:
- Product risk assessments
- Process risk evaluations
- Risk-benefit determinations
CAPA ↔ All Teams:
- Non-conformity investigations
- Complaint handling
- Continuous improvement initiatives
Audit Programs ↔ All Teams:
- Internal audit findings
- Certification audit preparation
- Compliance verification
Documentation ↔ All Teams:
- Controlled document management
- Technical file compilation
- Regulatory submission packages
📊 Success Metrics
Regulatory Affairs Metrics
- Submission Success Rate: > 95%
- Time to Market: -30% reduction
- Regulatory Authority Questions: < 2 rounds
- Market Access Delays: < 10% of submissions
Quality Management Metrics
- QMS Audit Findings: < 5 minor per audit
- CAPA Closure Rate: > 95% on-time
- Document Control Errors: < 0.1%
- Management Review Actions: > 90% completion
Risk Management Metrics
- Risk File Completeness: 100%
- Post-Market Issues: < 1% requiring risk file updates
- Risk Control Effectiveness: > 95% verified
- Benefit-Risk Assessments: 100% up-to-date
Security & Privacy Metrics
- ISMS Compliance: > 95% controls implemented
- Security Incidents: < 2 per year
- GDPR Compliance: 100% processing activities documented
- Data Breach Response: < 72 hours notification
Audit Performance Metrics
- Audit Completion: 100% on schedule
- Finding Closure: > 90% within target dates
- Certification Maintenance: 100% successful
- Regulatory Inspections: Zero critical findings
🎓 Training & Competency
Each skill supports team development:
Training Materials Included
- Detailed SKILL.md with workflows and decision frameworks
- Reference guides with regulatory requirements
- Example scenarios and case studies
- Checklists and templates
Competency Development
- New hires: Use skills for onboarding and training
- Experienced staff: Reference for complex scenarios
- Leadership: Strategic planning and decision support
- Cross-functional teams: Understanding regulatory/quality requirements
💰 ROI & Business Value
Time Savings
- Regulatory submissions: -40% preparation time
- QMS maintenance: -35% administrative time
- Risk assessments: -50% analysis time
- Audit preparation: -45% preparation time
- Documentation: -60% compilation time
Cost Avoidance
- Regulatory delays: $500K-$2M per avoided delay
- Compliance violations: $100K-$500K per avoided finding
- Security breaches: $1M-$10M per avoided incident
- Failed audits: $200K-$1M per avoided failure
Quality Improvements
- Market access success: +25% improvement
- Audit performance: +40% fewer findings
- Risk management: +50% better risk identification
- Documentation quality: +60% reduction in errors
Strategic Value
- Faster time to market: 30-40% reduction
- Market expansion capability: Multi-jurisdictional readiness
- Competitive advantage: Superior regulatory capabilities
- Innovation enablement: Robust framework for new products
Estimated Annual Value per Organization: $2-5M
🎯 Deployment Roadmap
Phase 1: Foundation (Weeks 1-2)
Priority: Establish leadership and core QMS
- Deploy Regulatory Affairs Head
- Deploy QMR
- Deploy QMS ISO 13485 Specialist
- Implement basic document control
Deliverables: Core team structure, basic QMS framework
Phase 2: Quality Systems (Weeks 3-4)
Priority: Build robust quality infrastructure
- Deploy CAPA Officer
- Deploy Quality Documentation Manager
- Deploy Risk Management Specialist
- Implement CAPA and risk management systems
Deliverables: Complete QMS, CAPA system, risk management framework
Phase 3: Regulatory Specialization (Weeks 5-6)
Priority: Add market-specific expertise
- Deploy MDR 2017/745 Specialist (for EU market)
- Deploy FDA Consultant (for US market)
- Deploy Information Security Manager
- Implement submission processes
Deliverables: Market-ready regulatory capabilities, security framework
Phase 4: Audit & Compliance (Weeks 7-8)
Priority: Verification and continuous improvement
- Deploy QMS Audit Expert
- Deploy ISMS Audit Expert
- Deploy GDPR/DSGVO Expert
- Implement audit programs
Deliverables: Complete audit capabilities, privacy compliance
Phase 5: Optimization (Ongoing)
Priority: Continuous improvement and scaling
- Performance monitoring and metrics
- Process optimization
- Team capability development
- System enhancement
Deliverables: Mature, optimized regulatory and quality systems
📚 Reference Documents
Strategic Planning
final-complete-skills-collection.md- Complete skills overview and architecture
Skill-Specific References
Each skill folder contains 3 detailed reference guides:
- Technical requirements and standards
- Implementation best practices
- Workflows and procedures
Supporting Documentation
All skills follow consistent structure:
skill-name/
├── SKILL.md # Main skill documentation
├── scripts/ # 3 Python automation tools
│ ├── [primary]_manager.py
│ ├── [secondary]_analyzer.py
│ └── [tertiary]_generator.py
└── references/ # 3 reference guides
├── [topic]_guide.md
├── [standard]_compliance.md
└── [process]_procedures.md
🤝 Cross-Skill Communication Protocols
Weekly Coordination
- Regulatory Affairs ↔ Quality Management: Submission readiness, change control
- Risk Management ↔ All Teams: Risk assessments, risk-benefit analysis
- CAPA ↔ All Teams: Non-conformance investigations, corrective actions
- Audit Teams ↔ Process Owners: Audit schedules, finding management
Monthly Review
- Management Review: QMR leads, all teams contribute
- Regulatory Updates: RA Head shares regulatory intelligence
- Performance Metrics: All teams report KPIs
- Resource Planning: Capacity and priority alignment
Quarterly Planning
- Strategic Alignment: Annual objectives and quarterly goals
- Training Needs: Competency development planning
- Process Improvements: System enhancements and optimization
- Audit Planning: Internal audit schedule and scope
🏆 Quality & Compliance Excellence
This complete skills collection enables:
Systematic Compliance
- ✅ All major regulatory frameworks covered
- ✅ Automated compliance checking and tracking
- ✅ Proactive regulatory intelligence
- ✅ Multi-jurisdictional coordination
Quality Excellence
- ✅ World-class QMS implementation
- ✅ Robust CAPA and improvement systems
- ✅ Comprehensive risk management
- ✅ Excellence in audit performance
Security & Privacy
- ✅ Complete ISMS implementation
- ✅ Medical device cybersecurity compliance
- ✅ GDPR/DSGVO privacy compliance
- ✅ Security incident response capabilities
Continuous Improvement
- ✅ Data-driven decision making
- ✅ Systematic problem solving
- ✅ Performance monitoring and optimization
- ✅ Innovation enablement framework
📞 Support & Resources
Getting Started
- Read
final-complete-skills-collection.mdfor complete overview - Download skills matching your team size and market focus
- Follow the deployment roadmap phases
- Customize tools and processes for your organization
Best Practices
- Start with foundation skills (RA Head, QMR, QMS)
- Add market-specific skills based on target markets (MDR/FDA)
- Implement audit programs once core systems are stable
- Continuously optimize using performance metrics
Customization
- All Python scripts can be customized for your workflows
- Reference guides can be enhanced with your specific procedures
- Templates can be tailored to your organizational needs
- Integration with your existing quality management software
🎯 Key Differentiators
What makes these RA/QM skills world-class:
- Expert-Level Content - Developed by regulatory and quality professionals
- Current Requirements - Up-to-date with latest regulations and standards
- Practical Tools - Python automation for real workflows
- Comprehensive Coverage - Complete lifecycle from planning through post-market
- Multi-Jurisdictional - EU MDR, FDA, and international standards
- Integrated Approach - Skills work together as a complete system
- Scalable - Suitable for startups through enterprise organizations
- Proven Frameworks - Based on industry best practices
- Automation-Ready - Scripts for compliance tracking and reporting
- Living Documents - Regular updates as regulations evolve
📖 Additional Resources
Regulatory Guidance
- EU MDR 2017/745 official text
- FDA guidance documents
- ISO standards (13485, 14971, 27001)
- MDCG guidance documents
- FDA recognized consensus standards
Quality Management
- ISO 13485:2016 standard
- FDA QSR 21 CFR Part 820
- ICH Quality Guidelines
- GHTF/IMDRF guidance
- Notified Body recommendations
Industry Standards
- IEC 62304 - Medical device software
- IEC 62366 - Usability engineering
- IEC 62443 - Cybersecurity for devices
- ISO 15223-1 - Medical device symbols
- ISO 20417 - Information supplied by manufacturer
🚀 Next Steps
- Review complete skills architecture in this README
- Download skills matching your organization size and market focus
- Follow deployment roadmap for systematic implementation
- Customize tools for your specific workflows
- Track metrics to demonstrate value and continuous improvement
Your complete Regulatory Affairs & Quality Management team is ready to ensure compliance, quality excellence, and successful market access! 🎊
For detailed information about each skill, see the individual SKILL.md files within each skill folder.