Maintains detailed awareness of, takes fully into account as necessary, and promotes throughout the organisation, any relevant statutory, internal, or external regulations, standards, and codes of good practice, e.g. those relating to security, cyber security quality, data protection, audit etc. Is a major contributor to the definition of such regulations, standards and codes.