Due to the constant development of IT technologies and applications and frequent organisational changes, IT systems of companies and public authorities are subject to permanent change. As a result, after each change or adaptation of the IT environment, the effect of these change on the underlying business processes and the protection goals of information security has to examined. Additional uncertainties arise from the multitude of threat scenarios and their further development into increasingly sophisticated variants.
Current and potential customers, suppliers, auditors, authorities, and other stakeholders have a fundamental interest in comprehensive information security of the company concerned and the correct functioning of its business and accounting-relevant processes. Specific verification obligations also result from regulatory and legal requirements for corporate IT.
Verification and confirmation of the correct functioning of the IT environment, compliance with information security and fulfilment of the legal requirements often require auditing support and expertise from external specialists.
Our experts support you in auditing your IT environment on the basis of the legal requirements, along international and national auditing standards, as well as using best practice and profiting from many years of experience.
The following audits, certifications and attestations services are part of our portfolio:
- IT audit as part of the annual audit of auditors’ financial statements
- Audit and certification of information security based on the relevant standards
- Compliance audits for legal/regulatory requirements
- Audit and certification of cloud security
- Audit and certification of data centers
- Software audits and certification
- Audit and certification of internal control systems of service providers
Based on your specific problem, objectives, and the current status quo, we define in close cooperation with you the approach for the audit and assessment in order to obtain the respective certification.
Our experts have many years of experience in establishing audit and certification readiness as well as in the efficient execution of IT audits parallel to the ongoing day-to-day business of the IT department.
We work closely with you and always offer you transparency and clarity about the status of our audits and the progress of the certification activities.