Our People

Gregor Strobl

  • CIA
  • CISA
  • CISM
  • Certified IT-Forensic Specialist
  • Partner
  • Co-Head Risk Advisory Services
RRCG, Hamburg

Scan the QR code to save the contact details.

Mr. Gregor Strobl has been a partner in the service line Risk Advisory Services (RAS) at RSM since 2016. He has gained extensive experience in implementing and monitoring ongoing projects in the areas of risk management and internal control systems (SOX) for medium-sized clients as well as for international companies operating in accordance with the globally recognised COSO frameworks (COSO I and COSO II/ERM) as well with the ISO standards for risk management.

His activities have focused on auditing IT systems as well as on analysing IT risk management systems. Additionally, Mr. Strobl has  performed numerous annual internal audits. He has also performed ICS, ERP and CMS audits or had various consulting projects in these areas.

Mr. Strobl is also an SAP Junior Consultant at the University of Duisburg and a Certified Data Protection Officer [Technical Monitoring Association (TÜV)].


Since 2009
RSM Risk Consulting Germany GmbH & Co. KG

Next Ten audit and tax advisory firm, Munich
(one of the ten firms ranking after the BIG Four)

University of Applied Sciences, Kufstein, Austria

Professional Expertise

  • IT Risk & Advisory
  • Internal Controls/Sarbanes Oxley (SOX)
  • Internal Audit

Industry Specialization

  • Automotive Industry
  • Chemical Industry and Pharmaceuticals
  • Consumer Goods


  • Membership in the German Institute of Internal Audit, Incorporated Association (DIIR)
  • Membership in the Information Systems Audit and Control Association (ISACA)
  • Membership in the Association of Certified Fraud Examiners (ACFE)


  •  Implementation of the Data Protection Ordinance (Newsletter Article 2017)
  • IT Security for the Middle Market (Newsletter Article 2015)
  • IT Security in the Public Sector (Newsletter Article 2013)
  • Adding Value through Internal Control Systems (ICS) (Article 2012)
  • Adding Value through Internal Control Systems (ICS) (European Study 2012)
  • Lean Risk Management for the Middle Market – Parts 1 to 3 (Article 2011)
  • Expanding Risk Management by Including Crisis Indicators (Article 2011)

Internet Explorer 11 is not supported.

We have detected that you are using an outdated browser. We recommend that you use an up-to-date browser to increase your security and to be able to use all the functions of the RSM website.

We recommend the following browsers: