ibi systems iris provides structured support and automatically delivers recommendations for security audits, vulnerability management and the development of your information-security-management-system (ISMS).

Benefit from a holistic and group-wide approach, according to best practice standards like IT-Grundschutz or ISO 27001/2.

  • ISMS
    ISO/IEC 27001/2
  • IT-Grundschutz
    BSI 100-1, 100-2, 100-3
  • “New” IT-Grundschutz
    BSI 200-1, 200-2, 200-3
  • IT security catalogue
    ISO/IEC 27019
  • Industry specific security standards
  • Cyber Security for SME
    (VdS 3473)
  • Further best practices e.g. ISIS12
  • IT documentation and structural analysis
  • IT security assessments and audits

The interdisciplinary possibilities of ibi systems iris lead to significant cost savings and guarantee an economically approach to face increasing internal as well as external requirements.


Dr. Stefan Wagner, CEO, ibi systems GmbH


  • IT Risk-Management
  • ISO/IEC 27005
    BSI 100-3 Standard
  • Operational
  • Database of
    damage events
  • Threat and
    risk analysis
  • Indicators and
    risk monitoring

ibi systems iris supports your entire Risk-Management according to current standards such as BSI standard 100-3 or ISO 27005 – comprehensively and sustainably. From initial detection through evaluation up to implementation and control.

Use iris for your operational Risk-Management including a database of damage events and indicators.


Through ibi systems iris you can optimize your Corporate- and IT-Governance-Management, your internal control system and your system of directives with the management of exceptions.

Your processes are mapped individually and supported optionally by standards like COSO, COBIT or ITIL, which are all applicable in iris.

    / COSO
  • Internal
    control system
  • System of directives with
    exception management


  • ICS
    PS 951 / ISAE 3402
  • Data privacy
  • Directory of procedures

Face rising heterogeneity, complexity and increasing legal demands by using ibi systems iris for your Compliance-Management – systematically and comprehensively.

ibi systems iris provides data protection (e.g., GDPR) and  compliance audits, IDW PS 951 or Solvency II as well as the development and control of your own compliance management system.


Optimize your auditing by using ibi systems iris. This is achieved by integrated templates and controls as well as by the unique “modular system”, which allows you to compile the relevant content of the assessment individually.

Use ibi systems iris for process and application audits, auditing your outsourced units as well as business partners or for reviewing business transactions.

  • Audit outsourced units
  • Process and application audits
  • Review of business

Business Continuity-Management

  • BSI
    100-4 Standard
  • Continuity and
    recovery plans
  • IT desaster
  • Emergency simulations and management
  • Business impact
    analyses (BIA)

Benefit from a system-based emergency management. ibi systems iris provides professional support for business impact analyses, emergency manuals as well as emergency simulations and emergency management.

Of course according to common standards like ISO 22307 or BSI 100-4 and conformal to legal and regulatory frameworks.