Auditing

IT Testing and Consulting

Doing busi­ness to­day is in­con­ceivable wi­thout IT sys­tems. But those sys­tems are gro­wing more and more com­plex. The core task of in­for­ma­tion tech­no­logy (IT) is to sus­tai­nably sup­port com­pa­nies’ busi­ness pro­ces­ses. At the same time, de­mands on IT sys­tems’ se­cu­rity and avail­abi­lity are con­stantly on the rise. IT sys­tems that play a si­gni­fi­cant role in ac­coun­ting are also sub­ject to spe­cial le­gal re­qui­re­ments for cor­rect hand­ling.

Our ex­perts in the Eb­ner Stolz IT Re­view unit will ana­lyze, eva­luate and op­ti­mize the com­plex in­ter­play bet­ween busi­ness pro­ces­ses and IT sys­tems as well as a com­pany’s in­ter­nal con­trol sys­tem. We take a close look at IT sys­tems re­le­vant to fi­nan­cial re­por­ting in terms of not just their pro­per ope­ra­tion for the pur­po­ses of an­nual fi­nan­cial state­ments, but their com­pli­ance with re­qui­re­ments of law, in­clu­ding tax laws. We dis­co­ver weak points, eva­luate risks to your com­pany, and thus en­sure that your IT sys­tem is both safer and more re­li­ably avail­able. Of course you can also call on us if you’re con­cer­ned there may have been IT se­cu­rity bre­aches and vio­la­ti­ons of in­ter­nal IT re­qui­re­ments.

Our team, which co­vers all of Ger­many, in­clu­des spe­cia­lists with ex­ten­sive ex­pe­ri­ence who also sit on the boards of the In­sti­tute of Pu­blic Au­di­tors (IDW), the ISACA in­ter­na­tio­nal IT go­ver­nance as­so­cia­tion, and the Ger­man In­sti­tute for In­ter­nal Au­diting (DIIR).

Our services at a glance

  • IT au­diting
    • Sys­tem au­dits per IDW stan­dards PS 330 and RS FAIT1
    • IT go­ver­nance
    • Data ana­ly­sis
    • ICSs for IT and busi­ness pro­ces­ses
  • In­ter­nal IT au­diting
    • Pro­cess au­dits
    • Qua­lity as­sess­ment
  • ERP sys­tems
    • “Quick Al­ter­na­tive Re­view” data re­view to iden­tify weak points
    • Aut­ho­riza­tion au­dits
    • Con­fi­gu­ra­tion and pro­cess au­dits
  • Data pri­vacy
    • Data pri­vacy au­dits un­der Sec. 9a of the Fe­deral Data Pri­vacy Act
    • Coa­ching on data pri­vacy
    • Ser­ving as an ex­ter­nal data pri­vacy of­fi­cer
  • Cer­ti­fi­ca­tion
    • Cer­ti­fi­ca­tion of IT ser­vice pro­vi­ders to IDW PS 951, ISAE 3402 and SSAE16
    • Cer­ti­fi­ca­tion of soft­ware to IDW PS 880 (soft­ware at­testa­tion)
  • Li­cense re­views
    • SAP sys­tem mea­su­re­ment
    • Mi­cro­soft li­cense au­dits
  • IT va­lua­tion
    • IT due di­li­gence
    • Soft­ware va­lua­tion
    • Soft­ware selec­tion
  • IT and ta­xes
    • E-ba­lance sheet
    • E-in­voice
    • Ge­ne­rally Ac­cep­ted Prin­ci­ples for Com­pu­te­ri­zed Ac­coun­ting Sys­tems (GoBS) / Prin­ci­ples for Data Ac­cess and Au­dita­bi­lity of Di­gi­tal Do­cu­men­ta­tion (GDPdU) / Ge­ne­rally Ac­cep­ted Prin­ci­ples for Kee­ping and Pre­ser­ving Ac­counts, Re­cords and Do­cu­men­ta­tion in Elec­tro­nic Form and for Data Ac­cess (GoBD)
    • Di­gi­tal tax au­dits
  • Data ana­ly­sis
    • Data au­dits / Data ana­ly­ses
    • Au­dits of soft­ware pro­ducts
  • IT con­sul­ting
    • Pro­ject qua­lity as­surance for soft­ware im­ple­men­ta­tion un­der IDW PS 850
    • Pro­ject ma­nage­ment
    • De­sign re­com­men­da­ti­ons for ICSs
    • IT go­ver­nance and stra­tegy
    • Mi­gra­tion
    IT se­cu­rity
    • Se­cu­rity con­cepts
    • Se­cu­rity ma­nage­ment
    • IT se­cu­rity Quick Check
back to top