best insurance

IT System Audits for vait compliance 

New German Insurance Law (VAG) requirements for the supervision of insurance IT systems, applications and their service providers (VAIT)

Together with the Minimum Requirements for Business Organisation (MaGo) and the specifications of the German Insurance Supervision Act (VAG), the Federal Financial Supervisory Authority of Germany (Bafin) has recently concretised the legal requirements for IT processes, IT security and management of IT risks by introducing the VAIT standards and regulations also to the insurance industry.

We can help you meet this new challenge with our team of experienced auditors by conducting a targeted GAP analysis. As a result of our IT systems audit and such analysis we will provide you with improvement recommendations for your action and follow up. We can provide you with project management assistance and continued support during the implementation implementation and guide you through the BaFin audit.


We comprehensively cover the eight requirement areas of the VAIT requirements scope:

  • IT strategy
  • IT governance
  • Information risk management
  • Information security management
  • User authorisation management
  • IT projects and application development
  • IT operations
  • Outsourcing and other IT services



We use cookies on our website. Some of them are essential for the operation of the site, while others help us to improve this site and the user experience (tracking cookies). You can decide for yourself whether you want to allow cookies or not. Please note that if you reject them, you may not be able to use all the functionalities of the site.