IT-Governance & Compliance ensures the structured and responsible management of IT operations and guarantees that strategies, processes, and systems meet legal and regulatory requirements. The objective is to create transparency, traceability, and efficiency within the IT organization. This includes clear accountability, effective controls, risk management, and the implementation of standards such as COBIT and ISO 27001, as well as regulatory requirements such as DORA, BAIT, and the GDPR.

IT-Audit & Data Protection encompasses the independent assessment and evaluation of IT systems, processes, and security measures to identify risks at an early stage and ensure compliance with legal and regulatory requirements. Targeted audits help identify weaknesses, evaluate control mechanisms, and highlight optimization potential. Data protection ensures the responsible handling of personal information in accordance with the GDPR, safeguarding organizations from legal, financial, and reputational risks.