Annual Audit of the DIAMOS Cloud Services According to ISAE 3402 Type II and ISAE 3000 Type II Successfully Completed

Sulzbach, 08/24/20 11:37 Age: 235 Tage

DIAMOS AG has been operating own cloud services, offering customers comprehensive operations hosted at their own data centre for more than 10 years. As in previous years, the data centre operation was audited by a renowned public auditor according to ISAE 3402 Type II for the period from 1 January 2018 to 30 September 2019. As a consequence and in keeping with the EU General Data Protection Regulation (GDPR), the first-time audit of processing activities according to ISAE 3000 was successfully completed this year and a type II report obtained. ISAE3000 Type II attests to the operational effectiveness and efficiency of the control framework. Both assurance reports, which are required to be renewed annually, are free of complaints.

The attestations confirm that DIAMOS has an internal control system (ICS) in place, which complies with the MaRisk and BAIT (BaFin Circular 10/17) requirements. In addition, the company meets the Supervisory Requirements for IT in German Asset Managers which, has laid down in more detail the requirements to the outsourcing of IT services—in particular with regard to information security and IT governance—for all asset management companies since last year. KAIT removes any room for interpretation in the implementation of the regulations already in force.

In line with the ongoing specification of obligations with regard to compliance and security, which are required to be taken into account in the operation of managed services, DIAMOS is continuously developing solutions in close cooperation with customers and industry-savvy auditors. The audit report confirms the compliance with all applicable regulatory and process-related requirements for managed services for financial applications. This also includes the specifications and recommendations of the Federal Office for Information Security and international standards.

“The annual audits of the DIAMOS data centre confirm that our customers can safely and conveniently outsource their system operations. We ensure, among others, that banking-compliant security standards, audited control procedures and 24/7 system availability are in place to warrant professional, full-service IT outsourcing services in the strictly regulated financial environment,” explains Wolfram Schinnerling, Managing Director and responsible for data centre operations and infrastructure at DIAMOS AG.

Stefan Markwitz, Managing Director and Information Security Officer of DIAMOS AG says: “The latest reports on our cloud services attest that our customers may rely upon our data centre operations meeting the applicable data protection and information security requirements. We were optimally prepared for the entering into force of KAIT since we had already implemented high standards last year as a result of the BAIT, which are also relevant for the KAIT and therefore only had to minor adjustments to make.”


DIAMOS has been one of the leading German providers of standard software solutions and services to the investment management industry since 1984. The DIAMOS product portfolio is based on a modern, future-proof system platform and offers flexible and expandable systems that, depending on requirements, can provide integrated solutions or single modules. DIAMOS solutions offer an efficient administration of funds, alternative investment products, retail investment accounts and shareholdings, and support extensive process automation along the entire investment management value chain. The service portfolio includes products for fund accounting, investment compliance, transaction and order management, reconciliation, fee administration, commission management, as well as transfer agency. Additionally, DIAMOS offers comprehensive advisory and support services. All products can be made available as ‘Software as a Service’ (SaaS) and ‘Application Service Providing’ (ASP) solutions via DIAMOS’ ISAE 3402 type 2 certified data processing centre. Leading fund platforms, investment / fund / management companies, custodians / depositories, banks and other financial companies – all value and rely on DIAMOS’ products and services. With its headquarters and a branch office in Germany, DIAMOS is further represented by subsidiary companies in Luxembourg and Switzerland.

Should you require additional information, please contact:

Julian Stein
Marketing & Communications

Am Limespark 2
D-65843 Sulzbach

Phone: +49 61 96 65 06-102
Fax: +49 61 96 65 06-100

to top

For more information please
contact us


Phone: +49 (0) 61 96 - 65 06-0
Fax: +49 (0) 61 96 - 65 06-100