IAM audit focusing on processes and controls in the Windows AD environment. Analysis of the security level on the basis of ISO 27002, verification by means of an interview and document review; bespoke suggestions for improvements on information security incl. risk-based and prioritized measures