de en
Nexia Ebner Stolz


IT Testing and Consulting

Doing business today is inconceivable without IT systems. But those systems are growing more and more complex. The core task of information technology (IT) is to sustainably support companies’ business processes. At the same time, demands on IT systems’ security and availability are constantly on the rise. IT systems that play a significant role in accounting are also subject to special legal requirements for correct handling.

Our experts in the Ebner Stolz IT Review unit will ana­lyze, eva­luate and opti­mize the com­plex inter­play bet­ween busi­ness pro­ces­ses and IT sys­tems as well as a com­pany’s inter­nal con­trol sys­tem. We take a close look at IT sys­tems rele­vant to finan­cial repor­ting in terms of not just their pro­per ope­ra­tion for the pur­po­ses of annual finan­cial sta­te­ments, but their com­p­li­ance with requi­re­ments of law, inclu­ding tax laws. We dis­co­ver weak points, eva­luate risks to your com­pany, and thus ensure that your IT sys­tem is both safer and more reli­a­bly available. Of course you can also call on us if you’re con­cer­ned there may have been IT secu­rity bre­a­ches and vio­la­ti­ons of inter­nal IT requi­re­ments.

Our team, which covers all of Ger­many, inclu­des spe­cia­lists with exten­sive expe­ri­ence who also sit on the boards of the Insti­tute of Pub­lic Audi­tors (IDW), the ISACA inter­na­tio­nal IT gover­nance asso­cia­tion, and the Ger­man Insti­tute for Inter­nal Audi­ting (DIIR).

For inter­na­tio­nal IT audi­ting and con­sul­ting enga­ge­ments, we draw on the spe­cia­lists from our world­wide Nexia part­ners.

Our ser­vices at a glance

  • IT audi­ting
    • Sys­tem audits per IDW stan­dards PS 330 and RS FAIT1
    • IT gover­nance
    • Data ana­ly­sis
    • ICSs for IT and busi­ness pro­ces­ses
  • Inter­nal IT audi­ting
    • Pro­cess audits
    • Qua­lity assess­ment
  • ERP sys­tems
    • “Quick Alter­na­tive Review” data review to iden­tify weak points
    • Aut­ho­riza­tion audits
    • Con­fi­gu­ra­tion and pro­cess audits
  • Data pri­vacy
    • Data pri­vacy audits under Sec. 9a of the Federal Data Pri­vacy Act
    • Coa­ching on data pri­vacy
    • Ser­ving as an exter­nal data pri­vacy offi­cer
  • Cer­ti­fi­ca­tion
    • Cer­ti­fi­ca­tion of IT ser­vice pro­vi­ders to IDW PS 951, ISAE 3402 and SSAE16
    • Cer­ti­fi­ca­tion of soft­ware to IDW PS 880 (soft­ware atte­sta­tion)
  • License reviews
    • SAP sys­tem mea­su­re­ment
    • Micro­soft license audits
  • IT valua­tion
    • IT due dili­gence
    • Soft­ware valua­tion
    • Soft­ware selec­tion
  • IT and taxes
    • E-balance sheet
    • E-invoice
    • Gene­rally Accep­ted Prin­ci­p­les for Com­pu­te­ri­zed Acco­un­ting Sys­tems (GoBS) / Prin­ci­p­les for Data Access and Audi­ta­bi­lity of Digi­tal Docu­men­ta­tion (GDPdU) / Gene­rally Accep­ted Prin­ci­p­les for Kee­ping and Pre­ser­ving Acco­unts, Records and Docu­men­ta­tion in Elec­tro­nic Form and for Data Access (GoBD)
    • Digi­tal tax audits
  • Data ana­ly­sis
    • Data audits / Data ana­ly­ses
    • Audits of soft­ware pro­ducts
  • IT con­sul­ting
    • Pro­ject qua­lity assurance for soft­ware imp­le­men­ta­tion under IDW PS 850
    • Pro­ject mana­ge­ment
    • Design recom­men­da­ti­ons for ICSs
    • IT gover­nance and stra­tegy
    • Mig­ra­tion
    IT secu­rity
    • Secu­rity con­cepts
    • Secu­rity mana­ge­ment
    • IT secu­rity Quick Check
back to top