Internal Audit

Auditing means trust through prevention based on secure, objective information

The internal audit should see itself as a competent partner of the management of a company.

By means of independent auditing and consulting services, corporate risks such as financial risks, liability risks or organisational risks are to be identified and minimised at an early stage. In this way, the internal audit supports the management in preventing possible organisational culpability.

Internal audit takes a risk-oriented approach to its work that is a perfect fit for the processes and people of the audited company. This requires a good understanding of organisation and IT as well as a talent for communicating with people.

On the one hand, auditors must be empathetic in order to ensure trust among the audited units, but at the same time they must display a certain authority in order to be able to close any weaknesses discovered in the system as quickly as possible through coordinated measures.

This is exactly where I see my strengths as a certified quality auditor and would like to support you.


Performance elements

  • Design and implementation of an audit program based on MaRisk requirements and DIN EN ISO 19011
  • Carrying-out process and compliance audits in accordance with applicable legal and internal requirements, both in the form of on-site and remote audits
  • Design and development of innovative audit approaches to bring about continuous improvement of internal processes and minimise risks
  • Reporting and presentation to potential supervisory bodies in a way that is appropriate for the targeted audience
  • Follow-Up that agreed measures are implemented on time and in the right way
  • Advice and support in the conception and implementation of new procedural or IT-technical procedures from the auditor's point of view
  • Assumption of the internal audit function within the framework of an outsourcing agreement 

What exactly does the "internal audit" do?

A brief overview

The internal audit department checks and monitors internal work processes for their correctness, regularity, expediency and economic efficiency.

The goal is to increase efficiency and at the same time reduce risk within the company and to present alternatives to the management.

The internal audit is independent of the operational processes in order to be able to examine objectively defined audit areas. There are two types of audit procedures. As a rule, ex-post, i.e. audits are carried out in the wake of company processes, but there are also so-called ex-ante, i.e. audits that usually accompany projects.

A distinction is made between the following areas of responsibility of the internal audit:

  • Financial auditing (audit of finance and accounting)
  • Operational auditing (auditing of core processes, e.g. personnel, IT, purchasing)
  • Management auditing (monitoring the management of the executive board in relation to the objectives of the company)
  • Compliance audit (verification of compliance with legal requirements)

The traffic light symbol

The traffic light symbol is a popular way to indicate the rating and the need for action quickly and pragmatically.