DEW21 Consolidates All GRC Processes into a Single Management System with BIC GRC

In the past, managing all our individual systems was time-consuming, inefficient, and unsatisfactory. But everything changed when we adopted the integrated, workflow-based BIC GRC software, which turned out to be the perfect platform solution for us.

Jens Feistel Information Security Officer


Power Supply






DEW21 is the local energy provider for Dortmund and its surrounding areas, and along with its network company Donetz (Dortmunder Netz-GmbH), it is part of Germany's critical infrastructure. For this reason, the company must adhere to, and demonstrate compliance with, a variety of norms and regulations. Previously, DEW21 encountered challenges with:

  • Siloed structures within the different GRC areas
  • Too many risk management tools and measures, leading to confusion
  • Inconsistent reporting in numerous formats
  • Lack of a comprehensive overview


With BIC GRC, DEW21 brings all its GRC areas into one management system. This includes compliance, data protection, information security, business continuity, and an integrated environmental and risk management. BIC GRC allows DEW21 to display all relevant business processes, KPIs, as well as risks and opportunities on central dashboards and in comprehensive reports. The key benefits are:

  • Consolidation of all activities, tools, and methods into one management system
  • Maximum utilization of synergies in control and monitoring mechanisms
  • Provision of a scalable platform by a single provider, with minimal effort from the in-house IT
  • Easy implementation of individual ideas and projects with support from GBTEC

Key Highlights

  • Boosted efficiency and transparency with a centralized, platform-based management system
  • Enhanced risk, opportunity, and governance processes through integration with BIC Process Design
  • Streamlined audit processes and ISMS ISO certifications (27001 & 27019) obtained

Expand your knowledge with our e-learnings on BPM & GRC.