Course Finder



Information security and IT outsourcing as per German MaRisk

Overview of the MaRisk requirements for IT security in banks, for typical IT outsourcing situations



  •  History of MaRisk since 1995
  •  MaRisk and the legal environment
  •  Risk management for banks
  •  Responsibility and liability
  •  Information security ISO 27000 and MaRisk
  • - The 14 elements of the ISO 27000 information security system and implementation specifics for banks regulated according to MaRisk
    - IT outsourcing responsibility and liability from the perspective of the Bank and from the perspective of the IT- / IS-service provider
  •  Seminar summary

Learning Target

The seminar gives an overview of the MaRisk requirements for information security for financial services companies under German supervision. The requirements existing in MaRisk are discussed in the context of other regulations and complemented by a summary of legal responsibilities. Participating in this seminar will give an in-depth overview of the overlapping topics of risk management according to MaRisk and information security as per ISO 27000. The usual outsourcing of IT services at banks will be particularly taken into account and relevant requirements be discussed for both the Bank as well as the IT- (or IS-) service providers.

Target Audience

Employees in banks from the areas of IT, information security, risk management / risk control, audit and organisation, as well as employees of IT- or IS-service providers for banks, which would deepen their understanding of the legal requirements on information security (IS) defined in MaRisk.


Interactive lecture, case studies, discussion, group work


1 day

Customised Programmes

Everything we offer in our range of open seminars can be packaged and delivered as tailormade in-house training programmes for companies and organisations. We will be happy to advise you and create an individual offer on request.

Price advantage of 10% from the 2nd participant per company and seminar date.

Functional Questions

Organisational Questions