Our consultancy supports companies in the systematic and standard-compliant establishment and updating of information security management systems (ISMS) in accordance with ISO 27001 and the BSI IT Grundschutz framework. Based on the business processes and the information processed therein, the need for protection is determined and appropriate measures to protect these information are derived.

We advise and support companies in identifying, analyzing and evaluating IT risks that may arise when processing information requiring protection and in dealing with them appropriately or in accordance with the company's risk appetite. In doing so, we are guided by established standards and best practice approaches.

We support your internal audit department in the establishment and implementation of IT and information security audits and provide advice and support for IT audits. Together, we prepare your company for certification audits, regulatory audits or other regulatory or contractual requirements.

We advise companies on the development, implementation and optimization of internal control systems (ICS) for IT to ensure compliance with legal regulations or contractual requirements vis-à-vis customers and the effectiveness of IT processes. Our experienced experts also carry out IT key control tests to check the appropriateness and effectiveness of internal IT controls and identify potential weaknesses