FRATCH

Recommended expert

Gladbeck, Germany

Experience

Apr 2024 - Dec 2025

1 year 9 months

Dortmund, Germany

Interim Head of Data Protection, Compliance and Internal Audit

BIG direkt gesund

Functional realignment according to IIR standards
Managing a team of 10 employees
Serving on the KRITIS steering committee

Jan 2013 - Present

13 years 1 month

Cologne, Germany

Senior Manager

IT-Audit GmbH Wirtschaftsprüfungsgesellschaft

Conducting internal audits and/or additional process audits (e.g., backups, migrations, etc.) based on external mandates or together with internal audit departments
Reviewing risk management systems, conducting audits of risk management and IT security according to ISO 27001; auditing data centers according to ISAE 3402
Conducting KRITIS audits
Project risk management

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

Managing Director

INTZeit Arbeit gGmbH

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

Managing Director

Sozialwerk St. Georg Werkstätten gGmbH

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

CIO

Sozialwerk St. Georg e. V.

Jan 2011 - Present

15 years 1 month

Senior Consultant

curareVISION Managementberatung

Conducting internal audits for municipal audit offices and approval checks
Assisting with tenders for managed services and data centers
Selecting and implementing a VoIP phone system
Implementing Office 365
Managing software development projects
Implementing incoming invoice processing
Creating a requirements concept for a new ERP system
Supporting the introduction and implementation of risk management systems
SAP HCM and SAP FI audits according to SAS 70/ISA 3402/IDW PS 951
Certifying software systems according to IDW PS 880

Jan 2010 - Dec 2011

2 years

Cologne, Germany

CIO

Hospitalvereinigung St. Marien

Leading the central IT department (DLCIT) for nine hospitals of Hospitalvereinigung St. Marien in Cologne for seven months as interim CIO
Conducting a Europe-wide open KIS/ERP tender for the Hegau-Bodensee-Klinikum Singen
Setting up IT benchmarking and a cost allocation key for IT costs for Hospitalvereinigung St. Marien in Cologne

Jan 2010 - Dec 2011

2 years

Bergisch Gladbach, Germany

Senior Consultant

PRO-KLINIK Krankenhausberatung

Jan 2003 - Dec 2009

7 years

Münster, Germany

Head of IT Audit and Internal Revision

CURACON GmbH Wirtschaftsprüfungsgesellschaft

IT-Audits, Internal Audits
Project Risk Management

Jan 1999 - Dec 2002

4 years

Senior Manager Technology Risk Consulting

Ernst & Young/Arthur Andersen

IT audit for Gothaer Versicherung
IT audit for German Cancer Aid
IT audit for Doc Morris
Software audit for Gerling Insurance Group

Jan 1999 - Dec 1999

1 year

Frankfurt, Germany

Head of Sales Germany

Olsen Consult Projektmanagement GmbH

Jan 1995 - Dec 1998

4 years

Stuttgart, Germany

Head of Consulting Systems

Deutscher Sparkassen Verlag GmbH

Jan 1989 - Dec 1995

7 years

Düsseldorf, Germany

Head of Software Development and IT Training

IDW-Verlag GmbH

Jan 1989 - Dec 1995

7 years

Düsseldorf, Germany

Senior Advisor System Auditing and IT Revision

Institut der Wirtschaftsprüfer in Deutschland e. V.

Skills

Taking On Management And Project Leadership Roles
It Governance As Cio
Compliance/internal Audit As Cae
Data Protection
Cia – Certified Internal Auditor
Crisc – Certified In Risk And Information Systems Control (Risk Assessments, Risk Response And Reporting)
Cisa – Certified Information Systems Auditor (It Audit, It Risk Management, It Compliance, Isae 3402)
Cism – Certified Information Security Manager (Information System Governance And Risk Management)
Cdpse – Certified Data Privacy Solutions Engineer (Data Privacy)
Licensed Software Auditor At Tüv Nord Cert Gmbh, Essen

Languages

German

Native

Certifications & licenses

CDPSE – Certified Data Privacy Solutions Engineer

CIA – Certified Internal Auditor

CISA – Certified Information Systems Auditor

CISM – Certified Information Security Manager

CRISC – Certified in Risk and Information Systems Control

Licensed software auditor

TÜV NORD CERT GmbH, Essen

Profile

Created

November 2025

Need a freelancer? Find your match in seconds.

Try FRATCH GPT

Frequently asked questions

Do you have questions? Here you can find further information.

Where is Thomas based?

Thomas is based in Gladbeck, Germany and can operate in on-site, hybrid, and remote work models.

What languages does Thomas speak?

Thomas speaks the following languages: German (Native).

How many years of experience does Thomas have?

Thomas has at least 37 years of experience. During this time, Thomas has worked in at least 11 different roles and for 14 different companies. The average length of individual experience is 2 years and 7 months. Note that Thomas may not have shared all experience and actually has more experience.

What roles would Thomas be best suited for?

Based on recent experience, Thomas would be well-suited for roles such as: Interim Head of Data Protection, Compliance and Internal Audit, Senior Manager, Managing Director.

What is Thomas's latest experience?

Thomas's most recent position is Interim Head of Data Protection, Compliance and Internal Audit at BIG direkt gesund.

What companies has Thomas worked for in recent years?

In recent years, Thomas has worked for BIG direkt gesund, IT-Audit GmbH Wirtschaftsprüfungsgesellschaft, INTZeit Arbeit gGmbH, Sozialwerk St. Georg Werkstätten gGmbH, and Sozialwerk St. Georg e. V..

Which industries is Thomas most experienced in?

Thomas is most experienced in industries like Professional Services, Healthcare, Media, and Entertainment and Publishing. Thomas also has some experience in Insurance, Pharmaceutical, and Banking and Finance.

Which business areas is Thomas most experienced in?

Thomas is most experienced in business areas like Information Technology (IT), Audit, and Project Management. Thomas also has some experience in Human Resources (HR), Operations, and Strategy and Planning.

Which industries has Thomas worked in recently?

Thomas has recently worked in industries like Professional Services, Healthcare, and Insurance.

Which business areas has Thomas worked in recently?

Thomas has recently worked in business areas like Audit, Information Technology (IT), and Project Management.

Does Thomas have any certificates?

Thomas has 6 certificates. Among them, these include: CDPSE – Certified Data Privacy Solutions Engineer, CIA – Certified Internal Auditor, and CISA – Certified Information Systems Auditor.

What is the availability of Thomas?

Thomas is immediately available part-time for suitable projects.

What is the rate of Thomas?

Thomas's rate depends on the specific project requirements. Please use the Meet button on the profile to schedule a meeting and discuss the details.