Skip to content


The spectrum of services we provide ranges from legality audits to security tests, ICT management control and efficiency checks, as well as personnel audits.

The organization must be confident that it is fulfilling the requirements of the current legislation.

The spectrum of services we provide ranges from legality audits to security tests, ICT management control and efficiency checks, as well as personnel audits.

Regardless of structure, the management of all business organizations, which includes public services, non-profits, or conventional private enterprises, must address the fundamental requirements for effective operations and performance of the company. Are our processes and employees working effectively and sustainably? Is our organization ready for future challenges? Are we neglecting any legal obligations?

To help you better understand this complex institutional situation, we examine the organization or problems from a business perspective. We favour an efficient and sustainable processes setup and look into available resources.


The leadership has maximum assurance and control over the risks and threats arising from the use of ICT.


The leadership has control over the effective allocation of the invested funds.


We offer audit services in the following areas:

HR audits

Describing the processes and monitoring the effectiveness of information management is an important step toward a personnel audit. Again, we often ask a few simple questions:

  • How does internal communication work?
  • Have you described the professional and personality profiles of your employees?
  • Are you able to measure, evaluate and manage employees’ motivation?
Our Approach

We offer two approaches to HR audits:

  • A soft path - self-assessment and internal improvements with the help of an external consultant.
  • A firm path - external evaluation and subsequent organisational changes, including possible outplacement.

Audit of internal communication, description of personality profiles, measurement of motivation, etc.


ITIL is a process-oriented framework for IT Service Management (ITSM). It was created as a collection of "Best Practices" in the field of ITSM. ITIL is current international standard for ITSM.

The ITIL is not only a tool for effective management of IT services, but it also guides how to further improve these services. Since the mechanisms for improving activities are contained directly in the individual processes, implementing ITIL in a company is a guarantee of continuous quality improvement.

Our Approach
  • Process management - analysis of the setup and functioning of processes, including ICT processes, is essential for understanding the functioning of the organization. It must be clear to what extent the process is managed, monitored, measured, evaluated and continuously improved.
  • Customer-oriented approach - this feature stems directly from the core of ITSM; all processes are designed with the customer's needs in mind, i.e. every activity, and every action in every process should bring the customer some added value.
  • Platform independence - The ITSM process framework is independent of any platform.
  • Free ITIL Library - the library has free access, which means you only pay for the work of our experts, not for overpriced manuals and tutorials.

Most customers are focused on COBIT 4 (COBIT 4.1). COBIT is an internationally recognized set of generally accepted objectives (metrics) for managing and audit-benchmarking IT processes. Its purpose is to guide an organization in maximizing the benefits gained from IT deployment, and through a proper control.

Our Approach
  • Creating processing maps, analysis of information flows and an overview of processes supported by information technology. Setting objectives.
  • Defining the information infrastructure.
  • Linking the Quality Control and IT.
  • Setting up documentation.
  • Resource management (staff, applications, data, infrastructure).
  • Processes optimization.
  • Management reporting, setting up checkpoints and targets.
ISO 27000

(HSN ISO/IEC 27002:2006)

The ISO 27000 is a family of standards (sometimes referred to as ISMS standards) focused on information security. These standards contain requirements, recommendations and examples of best practices. These standards are applicable to organizations of all types and sizes.

The individual standards focus on the following areas:

  • ISO/IEC 27000 - introduction and glossary.
  • ISO/IEC 27001 - standards for the establishment, implementation, management and improvement of an Information Security Management System.
  • ISO/IEC 27002 - best practice guidance.
  • ISO/IEC 27005 - Supporting the implementation of an information security management system from a risk analysis perspective.
  • ISO/IEC 27006 - guidance for certification.
  • ISO/IEC 27011 - Special edition for telecommunications.
Our Approach

It is in the interest of each organization to evaluate the level of risks arising from the deployment of information technology and subsequently implement a management system that best suits its operational needs.