COMPLIANCE AUDIT

OUR IT EXPERTS ARE HERE TO HELP

COMPLIANCE AUDIT OF YOUR SERVICE PROVIDER

Your partners and service providers make a significant contribution to the success of your company. This makes it all the more important that the IT of your service providers is as efficient and secure as your own.

CAN RESPONSIBILITY BE OUTSOURCED?

Not knowing your partners or service providers is like not knowing your own IT. After all, you cannot correct security vulnerabilities or weaknesses in processes that you know nothing about. The responsibility for outsourced services always remains with you, contrary to many assumptions. In short: responsibility cannot be outsourced.


KEEP THE OVERVIEW

Whether you are pursuing external certification, checking compliance with your internal guidelines or purchasing software from a service provider: If you know the crucial points that need to be monitored and checked, you have gained a whole new level of quality and security.


WHAT ARE YOUR DRIVERS?

We help you to ensure that your partners and service providers comply with a wide range of regulations.

  • LEGAL & REGULATORY REQUIREMENTS

    You are bound by applicable law or regulatory requirements to comply with and verify certain specifications.

  • INTERNAL GUIDELINES

    You place the highest demands on your own IT processes. And on those of your partners.

  • REQUIREMENTS FROM STANDARDS

    You monitor compliance with external specifications. Especially if your company has its own certification (e.g. ISO 9001, ISO 27001)

  • INDUSTRY REQUIREMENTS & CUSTOMER SPECIFICATIONS

    You take the demands of your customers very serious and protect your company from loss of reputation.

WHAT DO WE CHECK?

A service provider audit is always individually tailored to the requirements relevant for you and your service providers. For example, we check:

  • Supplier contract
  • Supplier management processes
  • Supplier policies
  • Suppliers incident management
  • Change management
  • Security management
  • Release management
  • Capacity management
  • Incident and problem management

WHAT DO YOU RECEIVE?

You will receive reliable results after the audit is completed:

  • A detailed report on all relevant topics
  • A catalogue of measures with concrete recommendations
  • Presentation of the results at your site or remote
  • Consultation for the implementation of the necessary measures

WHAT CAN YOU EXPECT?

We design each compliance audit flexibly and adapt it to your needs and circumstances. As a rule, a compliance audit is divided into the following phases:

  • PHASE 1

    Requirement analysis

  • PHASE 2

    Document review

  • PHASE 3

    Analysis plan / Audit agenda

  • PHASE 4

    On-site audit or remote audit

  • PHASE 5

    Evaluation of the results

  • PHASE 6

    Remediation

  • PHASE 7

    Results report

YOUR COMPLIANCE AUDIT


We know that every company faces individual challenges.

Regardless of which topics in the broad field of IT compliance are currently affecting your company: We listen and find a solution together with you.

Contact us