Integrated Risk Management
Through the application of technology and automation, we'll help you manage your risks efficiently and effectively across the entire enterprise.
Related insights
Identity and Access Managaement
We'll help you ensure everybody within your organisation has access to the right systems and data, for the right reasons, and at the right time.
Related insights
Cyber & Application Security
Our experts will uncover security weaknesses within your security design and business-critical applications. Helping you protect your organisation from both internal and external threats.
Related insights
About us
A group of passionate individuals with a shared purpose to help the world's leading companies embrace best practices for GRC and risk management.
Turnkey's strategic partner network consists of selected organisations that complement our capabilities.
Corporate Social ResponsibilityCSR
We are committed to being agents for change through our Climate Action Plan, championing diversity in our workplaces, and more.
Related insights
Get in touch
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
Related insights
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
Related insights
Webinars & eBooks
All of Turnkey's webinars, guides and other insights available in one place.
Related insights
Read the latest insights from our experts on GRC and risk management, covering the latest industry topics.
Related insights
Press Coverage
See all the publications where Turnkey, our experts and our successes have been noted.
Related insights
Key events
See the key industry conferences on GRC, SAP security and risk management which we are attending.
Related insights
Case Studies
Client satisfaction is of the utmost importance to us, and we strive to constantly deliver above expectations, going the extra mile at every opportunity.
Related insights
We've put together a comprehensive list of frequently asked questions - along with our responses - to the most common GRC and SAP security issues.
Related insights
13 January 2016

Cost – A Barrier To GRC As A Service?

Cost is often the first thing that people are interested in when looking at implementing new services, and that’s certainly the case for GRC as a service. And it is also here that some confusion often begins.mid-section-of-a-senior-man-calculating-financial-budget-2.jpg

Many people refer to “cloud” and “managed services” synonymously. However, in this instance, they are vastly different. Cloud computing has been around for a long time with organisations virtualising servers in order to run multiple applications from a smaller physical server estate. There are significant savings to be had by continuing to look for cheaper hosting rather than having to purchase physical servers for every sizing increase or application purchase.

Hosting applications in the cloud has just become the next step on that journey. Rather than hosting all of these virtual servers yourself and having direct costs to your own bottom line, why not partner with a provider of hosting solutions and share the economies of scale?

However, Managed Services are far from being just cloud. GRC as a Service means just that; a managed solution that is ready to be used. There is more in there than simply the hosted platform. A managed service is a working solution which is hosted but comes as a customer ready package of services; namely, maintenance, support & account management and customer configured content.

Having said that, there is naturally a price point that needs to be considered to make the service viable. The important thing to bear in mind however, is that the comparison should be made against a credible alternative and look at the TCO rather than just the simple calculation of a subset of costs, i.e. the license fee. As long as the other values are clearly articulated, cost should not be the primary decision factor.

So will GRC as a Service cost less than operating an On-Premise deployment? The answer to that depends on your individual requirements. If you already have a license for the products, a mature IT infrastructure estate where increasing the capacity is easy and cheap to achieve and you have an experienced and capable support team with the correct skillset to support your GRC implementation, then it is difficult to say that GRC as a Service will be cheaper. However, if any of those elements are missing, then there is the real possibility that GRC as a Service will be competitive. However, there is more to consider than simply cost.