Audits

Initial audits, so-called 'zero' audits, are a short initial verification, usually lasting 3-5 days, of the current state and level of preparedness of the organisation to implement Information Security Management System (ISMS).

The result is a report, addressing the following areas:
  • Information security management
  • Cybersecurity
  • Risk analysis
  • Business continuity management
  • Physical security

Depending on your needs, we perform audits in the areas of:

  • Pre-verification prior to ISO/IEC 27001
  • Pre-verification prior to ISO 22301 certification requirements
  • NIS 2 & DORA compliance

The result of each audit is a detailed report covering all the issues described in the standards or legal acts. The report may be drawn up in English or German.

  • The basic methodology for the work is derived from the requirements of ISO/IEC 27001:2017 and ISO 22301.
The information systems audit will be conducted in accordance with international auditing standards based on the Standards, Guidelines and Procedures for Auditing and Controlling Information Systems issued by the Information Systems Audit and Control Association (ISACA).