Our Consulting Partners

Founded at the end of 2019 and backed by years of experience, ACM Consultants supports companies on their journey to a secure IT future – from strategy to technical implementation. The portfolio includes, among other things, security analyses including penetration tests, managed security services, and consulting on information security according to ISO 27001, VDA-ISA, KRITIS, and VdS 1000. With locations in Warendorf, Hamburg, Stuttgart, Munich, Cologne, and Leipzig, we are present nationwide.

Adaptron GmbH is an independent system house based in Mammendorf. Its range of services includes IT security, backup and virtualization, cloud, unified communications, and support. The company primarily advises small and medium-sized businesses on IT security and assists with the implementation of ISMS according to standards such as BSI IT-Grundschutz, ISO 27001, or VdS 10000. With „Adaptron 7,“ it also offers an easy entry point into information security.

AXSOS AG offers comprehensive full-service solutions in cybersecurity, IT infrastructure, and digitalization. For over 300 clients in the DACH region, we support the establishment of an appropriate cybersecurity strategy, implementation of topics such as ISO 27001, employee awareness training, Managed SOC, vulnerability management, data protection management, and cloud transformation.

Expertise in information and data security
We guide our customers through the constantly growing regulatory requirements and standard specifications such as EU GDPR, NIS2, ISO 27001, TISAX and BSI basic protection.
To this end, we advise, implement and operate management systems for compliance with information security and data protection.

We are the independent bridge to IT security topics such as information security, data protection, business continuity, and IT forensics. Pragmatic implementations of NIS2, ISO 27001, TISAX, BSI Basic Protection, and other standards are our passion. Our clients trust our practical approach and creativity in handling rigid compliance topics with flexibility.

We are IHK-certified external data protection officers and your partner for legally compliant data protection. DIE DATENSCHÜTZER consists of IT experts, an IT lawyer and an economist and together we help create a seamless integration between the GDPR and your area of business. Using our comprehensive expertise, we support small and medium-sized enterprises in the areas of IT, law and data protection.

From IT infrastructure and IT security to software support - we make corporate IT performant. Whether you only want to secure individual files, your server or your cloud services, we develop your individual IT security concept. We support our customers in the implementation of an ISMS according to ISO 27001 or the BSI-Grundschutz. With DIN SPEC 27076, we also have the perfect tool to sensitise smaller companies to IT security issues.

The EDV-Unternehmensberatung Floß GmbH is a special service provider around information security (ISO 27001, TISAX, CISIS 12, best practice, etc.) as well as professional data protection in the context of the GDPR, BDSG-new, TTDSG, etc. The goal is always to develop customer-specific and pragmatic solutions with our team of specialists (technicians, lawyers, organization and process professionals) and to implement them successfully at the customer's site.

Thanks to our comprehensive advice and support for implementing GDPR-compliant data protection solutions, setting up and operating an information security management system in accordance with ISO 27001 or TISAX®, as well as modern IT solutions and secure cloud applications, we have already provided many customers with the necessary support for their challenges as a reliable partner. On request, we can provide an external data protection officer (eDSB) or information security officer (ISB) as part of our service packages, as well as auditors for internal audits. We work for our clients throughout Germany, and in some cases also for their international locations.

goSecurity AG successfully guides companies on the path to ISO certification according to ISO 27001 / ISO 27701 / ISO 22301.The team of 19 people, based in Switzerland, has over 20 years of experience. By using a pragmatic approach, a fully functioning management system can be established very quickly.

Data is the gold of the 21st century. It is therefore all the more important that you are informed about the GDPR and can comply with all guidelines and thus protect yourself and your customers and partners. IT audits are an effective way of identifying existing problems in advance so that you can take appropriate measures. We will be happy to advise you on the implementation of the GDPR and all matters relating to IT security.

We offer customized solutions in the areas of IT security (according to ISO 27001 and TISAX®) and data protection. Let our certified and TÜV-tested consultants support you with proven best practices and provide you with tailor-made advice.

INDUSYS GmbH, based in Sauerland, works to protect medium-sized companies from cyber threats and attacks via a holistic IT security concept. The security specialists assist their clients in the creation of an ISMS in accordance with ISO 27001, analyze their current IT security level, advise on the implementation of security measures, operate comprehensive managed security services and provide an IT security manager if required. Decades of experience in the field of IT infrastructure and information security have provided INDUSYS with extensive expertise, from consulting to the operation of IT security solutions.

InfiniSafe GmbH is a consulting firm for data protection and information security. Certified consultants support medium-sized and international companies in implementing management systems according to standards such as ISO 27001, VDA-ISA, KRITIS, BSI-Grundschutz, and CISIS12®. Additionally, InfiniSafe takes on roles such as external Data Protection Officer (DSB) and Information Security Officer (ISB), as well as conducting internal audits. Through an e-learning portal, employees receive practical training on data protection and security awareness.

The company was founded over 10 years ago as a development and design office. I now almost exclusively offer consulting and auditing services in the field of ISO 27001 and TISAX AL2 / AL3. I am appointed as a freelance auditor on behalf of DEKRA Certification GmbH for the named standards. I carry out audits in both German and English. On request, I am also available for audits / consultations both in the EU and non-EU countries.

InTo Consulting - Where IT security meets data protection. With intervalid's data protection management tool, we support companies in implementing efficient data protection solutions and complying with legal requirements. In addition, we take on mandates as external data protection officers if this is required by law and offer comprehensive IT security strategies to protect your data in the best possible way.

ISO Software Systeme GmbH is an IT software and systems house established in 1979. We don't just advise; we implement and operate – comprehensively in information security and data protection:

• Setup and Improvement of ISMS according to ISO 27001
• Implementation of Regulatory Requirements (NIS-2, CRA, GDPR, KRITIS, TISAX)
• IT Compliance, GRC & Authorization Concepts
• Security Assessment in IT, IoT & OT Environments
• Hosting & Managed (Security) Services
• AI-assisted automation

Joachim Dürr is a consultant, data protection officer, information security officer, and auditor for ISO 27001, IT Security Catalog, and ISO 9001. He offers consulting and training in the establishment, operation, and auditing (audits, internal audits) of management systems.

Koell Consulting advises companies in all data protection matters. The highest level of consulting expertise is combined with structured concepts and comprehensible implementation strategies to create pragmatic solutions. With Intervalid, Koell Consulting represents secure data protection management, which is becoming a vital factor in the success of companies in the information society. In addition, training courses on the topic of security awareness are offered.

As a consultant and interim CISO, Michael Wiesner has been supporting companies in managing their information security for more than 25 years. He and his team take care of all essential issues relating to information and cyber security, with a focus on information security management (VdS 10000, TISAX®, ISO 27001), penetration testing and incident response.

Our innovative team of CISOs, ISBs, auditors and trainers will advise and support you in all matters relating to business continuity management, risk management and IT security management. We develop individual and pragmatic solutions for legal and your own compliance requirements and also implement IT security in your company with our partner company RW-Consult GmbH.

itsecurity coach offers customized services to protect your sensitive data and company information throughout its entire lifecycle. This protects your assets. You benefit from our experience from projects with first-class clients from long-term partnerships. We offer the following guidelines/standards: ISO/IEC 27001, TISAX®, VdS 10000, BSI IT-Grundschutz and BSI standards and NIST Cyber Security Framework.

Since 2002, we have been providing comprehensive advice to companies of all sizes on data protection and information security topics and building the corresponding management systems. Our team of legal and technical experts has extensive experience, particularly in the healthcare sector and corporate data protection. If desired, we also create documentation for you, train your employees, and can be appointed as your external data protection officer or information security officer.

ProIT Service GmbH is a consulting company in the field of IT security and data protection. We offer legally compliant solutions that are adapted to the everyday business of our clients. We provide practical advice to a range of clients, including construction companies, media agencies, tax consultants, auditors, and software manufacturers throughout Germany, drawing on over 20 years of experience in IT.

As internationally certified consultants, we support our customers and clients in the exciting field of „quality, processes and innovation“. In addition to GDPR consulting and our role as certified data protection officers, we also support our clients in the area of information security as a certified ISMS manager and auditor in accordance with ISO 27001, drawing on a wealth of experience and state-of-the-art methodology.

Reduceo GmbH, based in Cologne, offers consulting services in the areas of data protection, information security, environmental protection and compliance for medium-sized and globally active companies. Their range of services covers all requirements, from the implementation of a data protection or information security management system to supplier security. Reduceo GmbH advises on all facets of security, including data protection and information security in line with ISO 27001, BSI Basic Protection, TISAX® and VdS 10000, physical security concepts, legal issues and employee training.

Riske IT GmbH operates internationally and offers consulting services in the areas of data protection and information security with its TÜV-certified experts. We support you in the implementation of GDPR, TTDSG, and BDSG, as well as in the introduction of Information Security Management Systems (ISMS) based on ISO 27001, ISO 27701, and BSI Basic Protection.

Our comprehensive service offering includes not only consultations but also training in the areas of data protection & information security, as well as data protection and information security audits. Additionally, we provide external data protection officers (DPO) and information security officers (ISO).

As IT experts, we have been developing individual solutions for our clients for over 30 years. We combine certified data protection with expertise from many years of practical experience in IT security.

The Süddeutsche Datenschutzgesellschaft mbH combines legal and technical expertise to support companies in a practical and pragmatic way with data protection and information security (e.g., ISO27001, TISAX®, BSI Basic Protection, KAIT). In addition to comprehensive, tailor-made data protection legal advice, we offer technical audits, penetration tests, a training platform for our areas of focus, and an IT security portal for monitoring. We advise startups as well as international corporations and government agencies, always with the goal of optimally integrating data protection and information security into everyday business operations.

UIMC: Pragmatic. Experienced. Understandable.
We are a medium-sized management consultancy specializing in data protection and information security. Founded in 1997, we offer a full range of services (including certification preparation). Our approximately 30 employees have diverse specializations and contribute them profitably to find practical solutions. UIMC has branches in Berlin, Saarbrücken, and Vienna.

VamiSec GmbH – AI-driven IT Security & GRC Experts – supports companies in transforming regulatory complexity and technical security requirements into an integrated, auditable operating model. Our focus areas: AI Security & AI Governance (ISO 42001, EU AI Act), Integrated GRC & Compliance (ISO 27001, NIS2, DORA, TISAX, BSI IT-Grundschutz), Red Teaming and Penetration Testing, Application & Cloud Security, and Incident Response & Forensics.

Werner Merz has been working in the field of ISMS since 2016. His focus is on municipal utilities, having attended more than 100 days of audits (internal and external). He also works as an independent consultant as well as an information security officer at Stadtwerke. In 2018, Werner Merz successfully completed the requisite training for the role as auditor/lead auditor for ISO 27001. He advises Stadtwerke in the area of ISO 27001, 27002, 27019 and the IT security catalog (these standards include audits).