Gerald Suffel
Senior IT- and Business Auditor

Contact
Telephone: +49 40 4223 6660-57
E-Mail: g.suffel@roser-hamburg.de
-
Qualifications
+ -
- Degree in business administration
- Business IT specialist (IHK)
- CISA (since 2013)
- CDPSE (since 2021)
- Qualified Risk Manager ISO31000 and ISO27005 (since 2019)
- IT-Security Auditor TÜV (since 2017)
- Business Continuity Manager (since 2020)
-
Education and professional experience
+ -
- Studies of business administration at Wirtschaftsakademie Blieskastel
- 1991–2012: Kreissparkasse Kusel, various positions, most recently IT-Auditor
- 2012–2015: Talanx AG, Hannover, Group Audit, Senior IT-Auditor, international IT-Audits of Talanx Group companies
- 2015–2022: Gesellschaft für Datensicherheit und IT-Beratung mbH, Deputy Department Head IT-Audit (national and international)
- 2022: Prüfungsverband Deutscher Banken, Köln, Deputy Division Manager technical audits
- 2022: G&H Bankensoftware AG, Berlin, Head of Regulatory and Compliance
- Since 2023: Roser GmbH Wirtschaftsprüfungsgesellschaft Steuerberatungsgesellschaft
-
Practice areas
+ -
- IT audits
- IT controlling
- IT consulting
- Data protection
- Data analyses
-
Industries
+ -
- Automotive
- E-commerce
- IT services
- Food
- Logistics
- Medical/pharmaceutical sector
-
Languages
+ -
- German
- English
-
Memberships
+ -
- ISACA and ISACA expert group cloud computing
-
Selected credentials
+ -
- IT Consulting for medium-sized companies, in particular: IT governance, information security management, information risk management, business continuity management, identity and access management, IT projects, application development,
- Special IT audits (analysis and assessment of IT-supported systems and processes, issuing software certificates, archiving systems, identity and access management, ISMS)
- Preparation and review of special documentation (process description in accordance with GDPdU, register of processing activities in accordance with GDPR)
- Conception and implementation of data analyses