Institutions and bodies

General Assembly

The general assembly is an annual meeting of all members of AUDEG and is its top-most body. The meeting takes place in Frankfurt (Main). All fundamental decisions concerning the cooperative and its politics are made by the general assembly.

Supervisory Board

The supervisory board is elected by the general assembly and represents the members' interest within the management. It also has to supervise the work of the management in name of the membership, but also to lend it support and advice. The supervisory board is elected for three years and is currently made up of Holger Bohne, Dr. Johannes Loxen (chairman) and Ingo Wolff.

Executive Board

The Executive Board manages the cooperative on its own authority in accordance with current law and the cooperative's statute. Extensive experience in auditing, IT-security and as independent auditors, the members of the management are ideally equiped to govern AUDEG and to make decisions in the best interest of its members. Management is made up of two honory members, picked by the supervisory board. These are currently Dr. Chen-Yu Lin and Mr. Michael Schmid.


Members of AUDEG - Deutsche Auditoren eG are enjoying the previlege to represent their interests in general assemblies, supervisory boards and working groups. Additionally, through our Competency Directory they gain access to our versitile platform to present their own competencies and industry experience. They can also participate in our exclusive training courses.

Working Groups & Committees

Because of our activities as certification body, neutral consultants and representation of german auditors we place a special emphasis on keeping all these areas strictly separated. To ensure this strict separation, our members are involved in a number of working groups and committees which supervise AUDEG's work and its many foci.

Advisory Council

The Advisory Council has the task of advising and supporting AUDEG on certification issues. In particular, the Advisory Council serves to ensure the objectivity and impartiality of AUDEG.
The Advisory Council shall ensure that:

  • the interested parties participate effectively while maintaining a balance,
  • AUDEG's activities are carried out impartially and in a non-discriminatory manner,
  • all AUDEG personnel and bodies act objectively and free from impermissible economic, financial and other constraints that may jeopardize impartiality,
  • an exchange of information is possible for interested parties.

In addition, the Advisory Board comments on the annual report of the management of AUDEG - Deutsche Audoren eG on maintaining impartiality.

Head of Conformity Assesment Body (CAB)

  • Competencies:
    • Knowledge of management systems
    • Knowledge of audit processes and procedures
    • knowledge of audit principles, practices and techniques
    • Knowledge of ISO 27001 specific documents and normative documents
    • Knowledge of processes of the certification body
    • Knowledge of risk management and risk assessment in information security
    • Knowledge of legal and regulatory requirements of information security
    • Knowledge of ISMS standards and other normative documents required in the certification process
    • Knowledge of the customer's business field
    • Knowledge of the customer's products, processes and organisation

The head of the CAB has the authority and responsibility for the following operations:

  • Tasks:
    • developing basic regulations and introducing processes and procedures relating to its activities;
    • monitoring the implementation of the policies, processes and procedures;
    • ensuring impartiality;
    • financial monitoring;
    • developing services and programmes for the certification of MS;
    • Assessment on auditor applications and appointment of auditors
    • conducting audits and certifications and handling complaints;
    • decisions on certification;
    • delegating powers to committees or individuals as necessary to carry out specified activities on their behalf;
    • contractual arrangements;
    • providing sufficient resources for the certification activities.

Office management (back office of the CAB)

  •  competencies:
    • Knowledge of the ISO 27001 standard and its normative documents
    • Knowledge of processes of the certification body
    • Knowledge of the customer's business field
    • Knowledge of the customer's products, processes and organisation
    • Knowledge of the customer's business field

The management of the CAB is responsible for the following operations:

  • tasks:
    • Examination of applications for certification
    • Quality assurance of the submitted certification documents
    • Review of submitted auditor applications
    • Issuing of certificates
    • Issue of certificates of appeal
    • Training of newly appointed auditors
    • Documentation and archiving of certification decisions
    • Document Management
    • Examination of documents

QM representatives (QM representatives of the CAB)

  •  competencies:
    • Knowledge of the ISO 9001 standard and its normative documents
    • Knowledge of processes of the certification body
    • Knowledge of the customer's business field
    • Knowledge of the customer's products, processes and organisation

The QM representative of the KBS is responsible for the following operations:

  •  tasks:
    • Examination and release of internal/external quality-relevant documents and information of the CAB Management of quality-related data and coordination of measures for quality improvement
    • Ensuring the QM verification documentation (records)
    • Participation in the evaluation of test results and customer surveys
    • Coordination of the annual audit programme, including the selection of auditors
    • Planning and evaluation of internal audits with audit assessment as well as ensuring the exchange of expertise with other institutions in the field of quality management
    • Monitoring of system- and product-related corrective and preventive actions


The evaluations accompany the certification procedure and support the QMB in the technical assessment of the audit results. The role of the evaluators is performed by the appointed AUDEG auditors who are not involved in the current certification procedure. The principle of dual control must be ensured.