DE
Contact
Request a demo

ABOUT US

Where Governance, Risk & Compliance meet for success

We are a technology company in the fields of Governance, Risk and Compliance (GRC). Our core activity is developing and implementing GRC solutions for companies worldwide. In this context, we offer consulting, implementation, training, maintenance and support services. Swiss GRC AG is the sister company of Swiss Infosec AG.

Who we are

«The GRC Toolbox is the result of more than 30 years of experience and our value proposition to comprehensively support our customers in digitalising their GRC processes.»

Besfort Kuqi
Co-Founder & CEO @Swiss GRC AG

Company Guideline

Our vision and mission are ideal guides and help us to find our orientation. They have an inspiring and motivating effect.

Our vision

Our vision is to make GRC an integral part of modern and digital corporate governance.

Our mission

We develop pioneering software solutions that help to understand GRC better, apply it easily and network it in a meaningful way.

Our history

The basic idea behind our Toolbox has already existed for 25 years. The former security management solution was further developed and expanded into a complete GRC solution. Out of this, our company has established itself. Our goal is to apply the experience we have gained and to continue adapting our GRC Toolbox to the dynamic needs of our customers.

2022

Triple ISO certification
Swiss GRC has implemented an information security and data protection management system and has been successfully certified according to ISO 27001 (ISMS), ISO 27017 (Cloud) and ISO 27701 (Privacy).

2020

GRC Toolbox v3
Continuous development and improvement are important in a dynamic time. In 2020, the third version of the GRC Toolbox is being introduced. Customers now have the possibility to make their daily work even more efficient with the help of predefined standard reports and dashboards.

2019

Swiss GRC AG becomes a teaching company
Swiss GRC AG is authorised to train computer scientists in EFZ application development as well as ICT specialists.

2017

Implementation of the first SWISS GRC DAY
The first SWISS GRC DAY is held under the motto "where governance, risk and compliance meet for success". The event at the Radisson Blu Hotel convinced interested parties, customers and partners.

Information on the next SWISS GRC DAY.

2016

Foundation of Swiss GRC AG
Swiss GRC AG is founded with the aim of advancing the development of software solutions for GRC. A new module, contract management, is added to the GRC Toolbox.

2012

GRC Toolbox v1
Over the years, new modules such as ICS, ERM and Policy Management have been introduced. The security management solution turns into a complete GRC solution.

2005

ISMS Toolbox
A web application of the ISMS tool is developed and introduced.

1993

Development of the ISMS tool
A prototype of an ISMS tool is developed and the first version is introduced later in 1997.

1989

Foundation of Swiss Infosec AG
The sister company of Swiss GRC AG is founded by Reto Zbinden, lawyer and current Chairman of the Board of Directors of the Swiss GRC AG.

Get to know our team

We are a team of experts. Trust, openness and flexibility are very important to us.

Besfort Kuqi
CEO and Board of Directors
Daniel Arnold
Head Product Management
Johannes Weiser
Head Solution Engineering & Support
Gentian Ajeti
Head Solution Consulting & Projects
Pascal Berger
Head Software Development
Natalie Fischer
Head Admin, HR & Finance
Yahya Mohamed Mao
Head Business Development & Marketing
Dr. Christoph Hasenkamp
Senior Project Manager
Patrick Felder
Senior Project Manager
Andreea Gherase
Senior Project Manager
Andreas Meier
Project Manager
Simona Parenta
Project Manager
Dreni Drenica
Junior Solution Consultant
Manuel Prieto
Solution Engineer
Jennifer Cicvarova
Solution Engineer
Sowmiyan Baskaran
Junior Solution Engineer
Adin Sinecan
Junior Solution Engineer
    Luke Paraponiaris
    Junior Solution Engineer
    Patrick Pizzato
    Customer Support Manager
    Christoph Graf
    Product Owner
    Claudio Bernardinis
    Cloud & System Engineer
    Eliot Bytyqi
    Computer scientist in training
      Josef Würsch
      Software Developer
        Sandro Roth
        Software Developer
        Fabian Amhof
        Software Developer
        Mike Pullen
        Software Developer
        Nora Wyss
        Presales Consultant
        Shayeste Afzaly
        Mediamatician
        Besfort Kuqi
        CEO and Board of Directors
        Daniel Arnold
        Head Product Management
        Johannes Weiser
        Head Solution Engineering & Support
        Gentian Ajeti
        Head Solution Consulting & Projects
        Pascal Berger
        Head Software Development
        Natalie Fischer
        Head Admin, HR & Finance
        Yahya Mohamed Mao
        Head Business Development & Marketing
        Dr. Christoph Hasenkamp
        Senior Project Manager
        Patrick Felder
        Senior Project Manager
        Andreea Gherase
        Senior Project Manager
        Andreas Meier
        Project Manager
        Simona Parenta
        Project Manager
        Dreni Drenica
        Junior Solution Consultant
        Manuel Prieto
        Solution Engineer
        Jennifer Cicvarova
        Solution Engineer
        Sowmiyan Baskaran
        Junior Solution Engineer
        Adin Sinecan
        Junior Solution Engineer
          Luke Paraponiaris
          Junior Solution Engineer
          Patrick Pizzato
          Customer Support Manager
          Christoph Graf
          Product Owner
          Claudio Bernardinis
          Cloud & System Engineer
          Eliot Bytyqi
          Computer scientist in training
            Josef Würsch
            Software Developer
              Sandro Roth
              Software Developer
              Fabian Amhof
              Software Developer
              Mike Pullen
              Software Developer
              Nora Wyss
              Presales Consultant
              Shayeste Afzaly
              Mediamatician
              Play Video

              This is what we offer you

              Do you appreciate a varied working environment, above-average decision-making competencies and the opportunity to contribute your expertise and ideas to a growing company? Then you are a great fit for us!

              Become part of our team

              Flexibility

              In our 40-hour week, we focus on flexible working hours and offer the possibility to work from home. This allows our employees to optimally coordinate work and live.

              Workplace

              Our office is located in the heart of Lucerne and is only a five-minute walk from the train station. The central location offers you many catering options.

              Team spirit

              Our company culture is characterised by trust, openness and flexibility. Thanks to the helpful team spirit, you will learn something new every day and contribute to your colleagues’ learning as well.

              Benefits

              Our employees benefit from various advantages such as free drinks, annual excursions and the many public holidays.

              Flat hierarchies

              We have flat hierarchies that allow decisions and changes to be made quickly and efficiently.

              Fair remuneration

              Only together can we achieve our goals. It is therefore all the more important to pay our employees fairly and in line with the market.

              Fact and figures

              0 +
              customers
              0 +
              completed
              projects
              0 +
              years of
              experience
              0 +
              specialists within
              the group

              Our clients

              Trust in Swiss GRC like many other satisfied companies.

              Show all
              helvetia.png
              Postfinance.png
              ETH_Zurich.png
              CSS.png
              Stadt_Zuerich.png
              BLS_Logo
              die-mobiliar-1.png
              baloise_.png
              Valora.png
              Siegfried.png
              porsche__.png
              Visana.png
              Swiss-Steel.png
              Die_Post.png

              Become part of our team

              We offer you many opportunities to grow personally and professionally. In our company, you will learn something new every day and support others. Trust, openness and flexibility characterise our company culture. You can bring in your ideas and contribute to the further growth of our company.

              (Senior) Application Manager (80-100%)

              As a Senior Application Manager, you are responsible for the company-wide operation and further development of our applications.

              Learn more

              Consultant Information Security 80-100%

              To strengthen our team, we are looking for a customer-oriented and network-thinking personality as Consultant Information Security.

              Learn more

              Consultant Governance, Risk and Compliance (GRC) 80-100%

              As a Consultant Governance, Risk and Compliance (GRC) you are responsible for the conception, realization and implementation of solutions in the areas of GRC.

              Learn more
              View all vacancies

              Company headquarters

              Our head office is located in central Switzerland – above the rooftops of the city of Lucerne and with excellent transport connections.

              Swiss GRC AG

              Hirschmattstrasse 36 – CH-6003 Luzern

              Do you have any questions about our solutions?

              Comprehensive digitalisation of your GRC processes with a tool tailored to your governance, risk and compliance requirements.

              Learn more
              How it works
              Swiss GRC AG

              Hirschmattstrasse 36
              CH-6003 Lucerne

              November
              Certified
              Employers of
              Switzerland 2022

              Solutions
              Company
              News & Events
              ISO certified
              ISO certified
              Subscribe to Newsletter
              Follow us
              Twitter Linkedin Youtube Instagram

              © Swiss GRC AG 2023. All rights reserved.

              Privacy policy         Imprint
              Linkedin

              Dr. Patrick Wegmann

              Advisory Board

              Dr. Patrick Wegmann is Chairman of the Board of Directors and COO of Lifetec AG, based in Dietikon ZH, a full-service provider for operational first aid and integral risk management. He studied and obtained his doctorate in financial market theory at the University of St. Gallen and has more than 20 years of software and consulting experience in risk management. In 1999, Dr. Patrick Wegmann co-founded Avanon AG, a leading software provider for operational risk management. After the acquisition of Avanon AG by Thomson Reuters, he was Head of Product Business for Enterprise Risk at Thomson Reuters until the beginning of 2019. Patrick Wegmann is a lecturer in risk management at the University of Basel, the Lucerne School of Business, the University of Applied Sciences Northwestern Switzerland, Kalaidos UAS and the Institute of Financial Planning.

              Linkedin

              Anuschka Küng

              Advisory Board

              Anuschka Küng has been a partner in the Acons Group since 2005 and has been the managing director of Acons Governance & Audit AG since 2007. She accompanies mandates from various industries in the implementation of the requirements for corporate governance and corporate monitoring. In the area of internal auditing, her client mandates include the management of internal auditing (outsourcing), auditing or consulting activities (co-sourcing) and the performance of quality assessments. In the areas of risk management, ICS, compliance management and process management, she oversees the implementation or further development of corresponding requirements such as the performance of risk assessments (ISO 31000, PS 890, ISO 9001), the design of specific requirements for risk control, the assessment of process control or the ICS, as well as the design of compliance management. She also works as a risk manager for an industrial company, responsible for GL/VR reporting. Anuschka Küng worked for several years as a Risk & Compliance Officer for an asset manager of collective capital investments and is now a member of the Board of Directors. As a lecturer, she teaches at various universities of applied sciences and institutes on the topics of corporate governance, risk management/ICS and internal auditing.

              Twitter Linkedin

              Prof. Dr. Stefan Hunziker

              Advisory Board

              Prof. Dr Stefan Hunziker is Professor of Enterprise Risk Management and Internal Control Systems at the Lucerne School of Business, Institute of Financial Services Zug IFZ. He is a member of the Institute’s Executive Board and heads the Risk & Compliance Management Competence Centre at IFZ. For more than 15 years he has been committed to further developing risk management in practice, always considering current scientific findings. Stefan Hunziker leads the continuing education programmes CAS Governance, Risk and Compliance (CAS GRC) and the specialist course Corporate Risk Management at the Lucerne University of Applied Sciences and Arts. As head of the MSc International Financial Management, he also trains international students in risk management and internal control. Prof. Hunziker has various teaching assignments in the areas of risk management, internal control systems and financial management. He coaches and advises organisations on the establishment and operation of risk management. Stefan Hunziker is the author of numerous books and articles, especially on holistic risk management and internal control systems. He is heavily involved in practice-oriented research and leads major federally funded projects (innosuisse). He regularly gives presentations at national and international conferences and is thus in close contact with the international risk community.

              Twitter Linkedin

              Besfort Kuqi

              CEO & Board of Directors

              Besfort Kuqi is the founder and Chief Executive Officer of Swiss GRC AG. He has been involved in the topics of Governance, Risk & Compliance (GRC) for over 10 years. His focus is on the digitalisation, integration and optimisation of management and control systems in companies and organisations. Specifically, Besfort Kuqi deals with issues around risk management, internal control systems (ICS) and compliance and security management. As a Project Management Professional (PMP), Besfort Kuqi supports nationally and internationally active companies and organisations in developing, implementing and presenting company-specific analyses and concepts to solve organisational and technical problems in GRC processes. Besfort Kuqi has co-developed the Swiss GRC Toolbox – a software solution for the systematic mapping and management of the many GRC disciplines – since its inception, he has successfully introduced it at many companies and organisations and has thus contributed to higher efficiency, transparency and acceptance in matters of management and control systems.

              Linkedin

              Reto Steinmann

              Board of Directors

              Reto Steinmann, Member of the Executive Board at Swiss Infosec AG and Member of the Board of Directors at Swiss GRC AG, holds a degree in Computer Science HF with a specialisation in Business Informatics. He deepened his knowledge in information security by successfully completing the MAS Information Security at the Lucerne University of Applied Sciences and Arts. Through his various activities as a system engineer, network and security engineer, project manager and IT security officer, he has over 20 years of experience in the areas of information technology, information and IT security as well as valuable know-how in project management. Reto Steinmann works for numerous clients in various industries. He works on mandates in the areas of risk management, information and IT security, setting up and operating information security management systems (ISMS) according to ISO 27001 and security audits. He also regularly takes on mandates as an external security officer. His comprehensive expert know-how and his practice-oriented approach are highly appreciated by his clients, true to the principle that security must be realisable and liveable in practice!