About me

As founder and managing director of the management consultancy Innerhofer Risk Management GmbH, I have many years of consulting and industry experience in the analysis, evaluation as well as outsourcing of information technology. The core of my holistic consulting approach is my intrinsic demand for quality and integrity as well as solution-oriented communication at eye level.

I support my clients as an interim manager or sparring partner in overcoming strategic and operational challenges, such as the establishment and further development of management systems, the anchoring of regulatory requirements in IT outsourcing contracts and their implementation as well as control in operations. On a strategic level, I advise on risk management, information security and cyber security.

Thanks to my many years of experience, I can draw on a broad network of experts, which I bring together and lead individually for my clients to solve complex and specific issues. As the author of numerous publications, I give lectures in Germany and abroad and pass on my knowledge to young professionals in courses on my main topics. In addition, I am involved in the ISACA Germany Chapter as deputy head of the special interest group IT compliance in the finance and insurance industry.



  • CISA (Certified Information System Auditor)
  • CRISC (Certified in Risk and Information System Control)
  • CISM (Certified Information Security Manager)
  • CISSP (Certified Information Systems Security Professional)
  • CSE (Certified Supervisory Expert)