Karsten Thomas

Karsten Thomas

Partner, IT & Controls Assurance

IT & Controls Assurance

Executive summary

Specialization

  • Audit and Advisory regarding IT Systems, IT Processes and Business Processes in ERP-Systems, Internal Control Systems (ICS)
  • Audit and Advisory regarding IT Governance, IT Compliance, IT Risk Management
  • Regulatory Assurance regarding VAIT/BAIT/KAIT/ZAIT, DORA (Digital Operational Resilience Act)
  • GoBD-Compliance
  • Data privacy
  • Information Security Management
  • Audit of (and with) Artificial Intelligence
  • Data analytics
  • Certified Information Systems Auditor (CISA)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Data Privacy Solutions Engineer (CDPSE)
  • ISO 27001 Auditor
 

Special

  • Member of working group „Technologization in Statutory Audits“ at Institut der Wirtschaftsprüfer in Deutschland e.V. (IDW)
  • Member of working group „IT Audit of Insurance Companies“ at Institut der Wirtschaftsprüfer in Deutschland e.V. (IDW)
  • Member of working group „Audit of Artificial Intelligence (AI)“ at Institut der Wirtschaftsprüfer in Deutschland e.V. (IDW)
  • Member ISACA (Information Systems Audit and Control Association)