What companies and organisations are audits suitable for?
Audits are for all companies that process personal data and want to keep data incidents and risks to an absolute minimum.
Benefits
An independent overview of your company
We offer unbiased, open communication, which means we can present the situation in a neutral way
Experience gained in different companies and sectors
You can benefit from our experience gained in various sectors with companies of different sizes
Meeting regulatory requirements
Regular security audits to meet regulatory requirements
Audits
Fundamental to the security process
Auditing is an ongoing process that is crucial for demonstrating compliance with applicable requirements, identifying any weaknesses and, if needed, implementing corrective measures.
Audit objectives might include:
- Checking and demonstrating compliance with ISMS guidelines (e.g. ISO 27001, ISIS12, IT-Grundschutz (IT Baseline Protection Manual)
- Checking and demonstrating compliance with client specifications (e.g. TISAX)
- Checking compliance with the organisation’s internal security objectives and policies
- Checks against industry best practice
Auditing services
Preparing your ISMS for certification
- Checking that your ISMS is compliant before certification
- Preparing your employees for the certification audit
Internal ISMS audits in accordance with recognised standards
Conducting regular internal audits required as part of your ISMS
Technical checks on IT systems
- Checks using threat prevention tools
- Assessing vulnerabilities and presenting solutions
- Checking internal and external systems and applications
Thematic audits
Conducting audits with a clearly predefined focus on individual IT systems, applications or business processes
