Thomas G. - (Interim) Head of Data Protection, Compliance and Internal Audit Unit

Go to Website

Gladbeck, Germany

Experience

Apr 2024 - Dec 2025

1 year 9 months

Dortmund, Germany

(Interim) Head of Data Protection, Compliance and Internal Audit Unit

BIG direkt gesund

Functional realignment according to IIR standards
Leading a team of 10 employees
Member of the KRITIS steering committee

Jan 2013 - Present

12 years 11 months

Cologne, Germany

Senior Manager

IT-Audit GmbH Wirtschaftsprüfungsgesellschaft

Conducting internal audits and/or additional process audits (e.g., backups, migrations, etc.) based on external mandates or in cooperation with audit departments
Auditing risk management systems, conducting audits on risk management and IT security according to ISO 27001; data center audits according to ISAE 3402
Conducting KRITIS audits
Project risk management

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

Managing Director

INTZeit Arbeit gGmbH

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

Managing Director

Sozialwerk St. Georg Werkstätten gGmbH

Jan 2012 - Dec 2022

11 years

Gelsenkirchen, Germany

CIO

Sozialwerk St. Georg e. V.

Jan 2011 - Present

14 years 11 months

Germany

Senior Consultant

curareVISION Managementberatung

Conducting internal audits for municipal audit offices and release reviews
Assisting in tenders for managed services/data centers
Selecting and implementing a VoIP PBX system
Implementing Office 365
Managing software development projects
Implementing invoice processing
Creating concept for requirements of a "New ERP"
Supporting the implementation of a risk management system
SAP HCM and SAP FI audits according to SAS 70/ISA 3402/IDW PS 951
Software system certification according to IDW PS 880

Jan 2010 - Dec 2011

2 years

Cologne, Germany

CIO (Interim)

Hospitalvereinigung St. Marien

Leading the central IT department (DLCIT) for nine hospitals of the St. Marien Hospital Association in Cologne for seven months as Interim CIO
Managing a Europe-wide open HIS/ERP tender for the Hegau-Bodensee Clinic in Singen
Setting up IT benchmarking and a cost allocation key for IT expenses

Jan 2010 - Dec 2011

2 years

Bergisch Gladbach, Germany

Senior Consultant

PRO-KLINIK Krankenhausberatung

Jan 2003 - Dec 2009

7 years

Münster, Germany

Head of IT Audit and Internal Audit Division

CURACON GmbH Wirtschaftsprüfungsgesellschaft

IT audits, internal audits
Project risk management

Jan 1999 - Dec 2002

4 years

Germany

Senior Manager Technology Risk Consulting

Ernst & Young/Arthur Andersen

IT audit at Gothaer Insurance
IT audit at German Cancer Aid
IT audit at Doc Morris
Software audit at Gerling Insurance Group

Jan 1999 - Dec 1999

1 year

Frankfurt, Germany

Head of Sale Germany

Olsen Consult Projektmanagement GmbH

Jan 1995 - Dec 1998

4 years

Stuttgart, Germany

Head of Department, Consulting Systems

Deutscher Sparkassen Verlag GmbH

Jan 1989 - Dec 1995

7 years

Düsseldorf, Germany

Head of Software Development and IT Training

IDW-Verlag GmbH

Jan 1989 - Dec 1995

7 years

Düsseldorf, Germany

Specialist Consultant for System Audit and IT Audit

Institut der Wirtschaftsprüfer in Deutschland e. V.

Summary

Experienced IT consultant and IT auditor with additional experience in internal audit and data protection. Holds certifications as CIA, CRISC, CISA, CISM, and CDPSE. Management experience as a CIO and managing director. Previous industry focus has been public sector, social services and healthcare. Broad project experience at various auditing firms in software auditing and certification according to IDW PS 880, data center audits according to ISAE 3402, and the planning, support, and execution of cloud audits according to BSI C5.