top of page
Start
ISO 27001, TISAX®, IT-SiKat, SzA, B3S, KRITIS, VAIT, IT security catalog, VDA ISA, attack detection systems, pharmaceuticals, food retail, hospitals, hosting, CDN, traffic control systems, control systems, food industry, aggregators, data centers, ISO 27017, ISO 27019, ISO 27701

AUDIT COACHING ⚫️⚫️🔴

Providing ISMS Audit Coaching worldwide to prepare for an official audit.

Flexibility

In order to offer you maximum flexibility when choosing and organising appointments, all our calendars have been made available online. This means that you can choose from the available days yourself and, if necessary, change your reservations without having to contact us.

Coaching to prepare for a TISAX® / KRITIS / ISO 27001 exam

Audit Coaching for a VDA ISA (TISAX®) / KRITIS / ISO 27001 audit

  • What is required for the audit? 

  • What should be paid particular attention to?

  • How can/must the requirements be implemented?

 

As experienced auditors for information security, we offer specialised audit coaching to prepare companies for audits in the areas of VDA ISA (TISAX®), KRITIS and ISO/IEC 27001. Our extensive experience as auditors has highlighted a common issue: many companies lack adequate preparation for audits. Our goal is to empower companies to accurately interpret and implement requirements through targeted coaching.

IMG_0669.jpeg

Important note: In order to avoid conflicts of interest, we are not allowed to audit or certify companies that we have supported in the context of our coaching in our role as auditors for the inspection service providers in the following years. This measure serves to ensure the impartiality and integrity of the inspection processes.

Our coaching approach

Our approach to audit coaching is not only to prepare your organisation for audits, but also to promote a deep understanding and ownership of information security and processes.

  • Independent interpretation and implementationWe place great emphasis on your team developing the ability to independently interpret and implement requirements. This means that we guide you through the process without taking responsibility for implementation. Our goal is to enable your team to understand and apply the requirements themselves.

  • Practice-oriented learning methods
    We use practice-oriented methods that aim to look at the real scenarios in your company and thereby create a deeper understanding of the requirements. This includes maturity assessments, workshop sessions and interactive discussions that are specifically tailored to your company's needs.

  • Focus on sustainability
    Our coaching approach aims to create sustainable structures in your organisation. We help you to establish the right people, processes, policies and control mechanisms that will last over the long term.

  • Adaptation to company specifics
    We understand that every organisation is unique. Therefore, we adapt our coaching to the specific needs and challenges of your company. This ensures that the learned practices and principles are directly applicable to your organisation.

  • Preparing for self-representation in the audit
    Ein zentraler Aspekt unseres Coachings ist die Vorbereitung Ihres Teams darauf, im Audit selbst die richtigen Antworten zu geben und die Prüfer effektiv zu informieren. Dies stärkt das Vertrauen und die Kompetenz Ihres Teams und minimiert das Risiko von Missverständnissen während des Audits.

  • Avoiding dependencies
    Our coaching is designed to make you independent of external consultants. We provide you with the necessary knowledge and tools to independently manage requirements and thus ensure that your company can independently and competently handle information security in the long term.

Our coaching is more than just preparation for audits – it is an investment in the future of your organisation in terms of information security and compliance.

Audit basis

  • ISO/IEC 27001

  • VDA-ISA (TISAX®)

  • IT security catalogue (IT-SiKat in accordance with §11 1a & 1b EnWG)

  • Industry-specific security standard (B3S)

  • Pharmaceuticals, food trade (expert), hospital, hosting, traffic control & management systems, food industry (expert), aggregators, data centres (expert), CDN, etc.

  • Guidance and specification of the requirements for the measures to be implemented in accordance with §8a section 1 of the BSIG

  • ISO/IEC 27001 based on the guidance on evidence in accordance with §8a paragraph 3 BSIG

  • Guidance on the use of systems for attack detection SzA (expert)

ISO 27001, B3S, KRITIS, IT-SiKat, TISAX®, VAIT, VDA ISA, §8a BSIG, KritisV, ISO 27002, IT security catalog, ISO 27019, §11 1a EnWG, §11 1b EnWG

Do you want audit coaching?

We are happy to answer your questions:

+49 40 82211748

What clients and cooperation partners say:

"Hello Mr. Borgers, thank you very much for your support for and during the ISMS certification of our network company. Your expertise in the pre-audit was particularly important for the subsequent successful certification according to the IT security catalogue in accordance with the Federal Network Agency and ISO 27001. I hope for continued successful cooperation."
Mathias Zeiss via LinkedIn | Stadtwerke Mainz Networks
IMG_0667.png
bottom of page