Digitalization, IT and cyber risks continue to rank among the top risks for companies and were therefore firmly anchored in the supervisory authority’s audit focus (#BaFin) for 2020. It is therefore foreseeable that banks and insurance companies are required to answer more questions on IT and cyber security within the newly defined audit scope.

While most companies have a corresponding ISMS (Information Security Management System) for information security, the focus on cyber security generally requires additional information. At the same time, companies also face the challenge of ensuring that the necessary processes are in place across the entire IT supply chain, especially in the case of outsourcing and relocation.

For this reason, FORFA Consulting works closely with ISACA and CMMI and for this purpose, uses the CMMI Cyber Maturity Platform. On the one hand, this ensures a risk-oriented approach, while on the other hand, the model offers the possibility of mapping to a variety of specific cyber standards. Thus the maturity level can be verified based on different requirements from different countries.

Would you like to know more about the CMMI Cyber Maturity Platform? We are at your disposition with further information and demonstrations. Just send us a message