Certification according to IDW PS 951

The IDW PS 951 auditing standard specifies requirements for auditing the ICS of a service company. The focus of an audit in accordance with IDW PS 951 is the ICS of the company to be audited as well as relevant processes. A description of the ICS by the company to be audited is part of the reporting. IDW PS 951 supports compliance with legal and regulatory requirements for companies in Germany.

ISO 27001

ISO 27001 defines requirements for the establishment, operation and continuous improvement of an information security management system or ISMS. An ISMS has the task of clearly regulating processes and responsibilities relating to information security and firmly establishing them in an organization.


The "Banking Supervisory Requirements for IT" (BAIT), which are primarily aimed at the management of credit institutions, are intended to make the supervisory authority's expectations with regard to IT security more transparent.