Trigonum supports you with supplier and internal audits, relieving you of the burden of managing your management system. Implemented Information Security Management Systems (ISMS) in accordance with ISO/IEC 27001, TISAX, BSI-KRITIS, etc., require regular internal and external reviews. Companies are required by ISO/IEC 27001 to conduct independent internal audits at planned intervals as part of their ISMS. The goal of these internal audits is to verify whether the standards and internal requirements are being met and if the ISMS is truly being practiced. Additionally, these audits regularly assess whether employees are aware of the measures, whether they are feasible, and whether they can be integrated into the operational workflow. Affected departments are audited annually and must allocate appropriate resources for this purpose. The annual ISMS audit program planning is created by the ISMS officer and communicated to the relevant departments. It makes sense to have an internal audit conducted by an independent external expert. This offers many advantages: companies save internal resources, benefit from the auditor’s high level of expertise, and ensure that audits are conducted efficiently, routinely, and in compliance with regulations. In most cases, organizations are also required to audit suppliers under ISO 27001. The goal of these audits is to check whether the supplier can meet delivery commitments and provide the contracted services. The audit also evaluates whether the supplier is acting in compliance with current information security requirements. Supplier audits help identify opportunities for improving delivery and quality efficiency in terms of time, cost, or resources, as well as uncovering undiscovered risks. Implemented Information Security Management Systems (ISMS) in accordance with ISO/IEC 27001, TISAX, BSI-KRITIS, etc., require regular internal and external reviews. Companies are required by ISO/IEC 27001 to conduct independent internal audits at planned intervals as part of their ISMS. The goal of these internal audits is to verify whether the standards and internal requirements are being met and if the ISMS is truly being practiced. Additionally, these audits regularly assess whether employees are aware of the measures, whether they are feasible, and whether they can be integrated into the operational workflow. Affected departments are audited annually and must allocate appropriate resources for this purpose. The annual ISMS audit program planning is created by the ISMS officer and communicated to the relevant departments. It makes sense to have an internal audit conducted by an independent external expert. This offers many advantages: companies save internal resources, benefit from the auditor’s high level of expertise, and ensure that audits are conducted efficiently, routinely, and in compliance with regulations. In most cases, organizations are also required to audit suppliers under ISO 27001. The goal of these audits is to check whether the supplier can meet delivery commitments and provide the contracted services. The audit also evaluates whether the supplier is acting in compliance with current information security requirements. Supplier audits help identify opportunities for improving delivery and quality efficiency in terms of time, cost, or resources, as well as uncovering undiscovered risks. Our Services Preparation of internal and supplier audits Support in creating the audit program Independent auditing of your ISMS using proven checklists and tools, such as developing an audit process plan and audit checklist Independent auditing of your ISMS Conducting supplier audits Audit follow-up, including the creation of audit reports and action plans Creation of status reports Knowledge transfer within the organization and training of auditors What Sets Us Apart Comprehensive Expertise (ISO/IEC 27001:2013 Lead Auditors and ISO 27001 Audit Team Leaders, certified by independent certification bodies, for audits based on IT-Grundschutz) Our experienced and highly qualified data protection and information security team has interdisciplinary competencies in the fields of data protection, information security, law, and IT. The team includes lawyers, computer scientists, economists, certified data protection officers, ISO 20000 auditors, IT security officers, ISO 27001 auditors, and ISO 27001 lead auditors. They support you in meeting legal requirements as external data protection officers. Through continuous training and regular knowledge sharing in the areas of data protection and IT/information security, our consultants maintain a high level of expertise and stay up to date. Extensive Experience of Our Auditors Our auditors have extensive experience from current certification audits and regular exchanges with other auditors. Additionally, they bring years of practical, leadership, and project experience in data protection, information security, organizational development, and business processes across various sectors and industries, including SMEs and large corporations. Our team combines decades of knowledge and experience in implementing information security requirements, as well as in building, operating, and further developing ISMS. Our wide range of proven methods, procedures, and solutions enables a holistic view of challenges and helps avoid errors. Increased Security with Certified and Qualified Consultants For your security and compliance, our consultants hold a wide variety of certifications from organizations such as TÜV Rheinland, TÜV Nord, DEKRA, the Data Protection Certification Company (DSZ), and the German Federal Office for Information Security (BSI). They are certified data protection officers, data protection auditors (DSZ), ISO 27001 lead auditors, ISO 27001 audit team leaders for BSI, IT-Grundschutz auditors (BSI), ISO 20000 auditors, and IT security officers, ensuring greater security for your company. Personalized Consulting at Eye Level Together with you, we develop practical solutions in an open and personal exchange at eye level. Our goal is to tailor the solutions to your specific needs, taking into account your expectations, ideas, and requirements. Tailored Solutions Since every company faces different requirements and challenges, we develop tailored solutions with you. You and your individual needs are at the center of our approach. Our information security solutions are customer-oriented, consider various conditions, and adhere to a high standard of quality. Thanks to our extensive practical experience, we can adapt to your company’s unique circumstances and develop precise solutions together. Proven Methods and Tools for Audit Execution and Documentation Our consultants have years of practical, leadership, and project experience in information security, data protection, organizational development, and business processes across various company departments and industries, from SMEs to large corporations. Our team combines decades of knowledge and experience in information and IT security, as well as in meeting data protection requirements and building, operating, and advancing data protection management systems. Our broad range of proven methods, procedures, and solutions enables a holistic view of challenges and helps avoid errors. Location Hamburg – Operating Nationwide and Internationally Trigonum GmbH – based in Hamburg, operates both nationwide and internationally. Depending on your needs, we consult with our clients either on-site or remotely. Supplier and Internal Audits – What Are the Benefits? Compliance with standards and legal requirements Reduction of internal resource strain Independent assessment of the Information Security Management System Access to the expertise of experienced auditors who are in constant communication with certification bodies Flexibility through on-site or remote audits Supplier and Internal Audits – What Are the Benefits? Compliance with standards and legal requirements Reduction of internal resource strain Independent assessment of the Information Security Management System Access to the expertise of experienced auditors who are in constant communication with certification bodies Flexibility through on-site or remote audits If you have any questions about audits, feel free to contact us! Direct Contact with Trigonum: +49 40 3199 1618 0 Trigonum GmbH Notkestrasse 9 22607 Hamburg Your Name* Bitte lasse dieses Feld leer. Your E-Mail-Adresse* Bitte lasse dieses Feld leer. Subject* Your message (optional) We need the data marked with an asterisk in order to process your enquiry. We process the data you enter in the contact form in accordance with our Privacy policy.