Integrated Risk Management
Through the application of technology and automation, we'll help you manage your risks efficiently and effectively across the entire enterprise.
Identity and Access Management
We'll help you ensure everybody within your organisation has access to the right systems and data, for the right reasons, and at the right time.
Cyber & Application Security
Our experts will uncover security weaknesses within your security design and business-critical applications. Helping you protect your organisation from both internal and external threats.
About us
A group of passionate individuals with a shared purpose to help the world's leading companies embrace best practices for GRC and risk management.
Turnkey's strategic partner network consists of selected organisations that complement our capabilities.
Corporate Social ResponsibilityCSR
We are committed to being agents for change through our Climate Action Plan, championing diversity in our workplaces, and more.
Get in touch
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
We have operations in all corners of the globe, so see which office is nearest to you and connect with them.
Webinars & eBooks
All of Turnkey's webinars, guides and other insights available in one place.
Read the latest insights from our experts on GRC and risk management, covering the latest industry topics.
Press Coverage
See all the publications where Turnkey, our experts and our successes have been noted.
Key events
See the key industry conferences on GRC, SAP security and risk management which we are attending.
Case Studies
Client satisfaction is of the utmost importance to us, and we strive to constantly deliver above expectations, going the extra mile at every opportunity.
We've put together a comprehensive list of frequently asked questions - along with our responses - to the most common GRC and SAP security issues.
9 September 2016

Where Will GRC as a Service Be in a Year From Now?

Where_Will_GRC_sml.jpgAlthough software as a service has been around for many years, there has been a significant market (or is that marketing shift) in the past 6-9 months making it seem like "as a service" is becoming the default position for customers procuring new software. 

I have certainly noticed that since entering the second half of 2015, there has been an openness from customers to evaluate managed-service and cloud-based applications far more seriously throughout the business development activities that Turnkey has been involved in. 

Having secured our first customer on the GRC as a Service solution in 2016, the expectation of this from a management perspective is that the footprint will grow. There is certainly a committment to getting things right before seeking to expand, and we fully expect to be dedicating a significant amount of time to achieve a great success with customer #1. However, lessons have already been learnt regarding the preparation and on-boarding aspects of the project which get customers up and running, allowing these types of transitions to be much smoother in the future.

As well as growing the service from a volume perspective, I think we can expect to see the breadth of services offered increased in line with the trend for on-premise deployments. Customers tend to start with one module, often Access Control, and then follow up with additional tactical product deployments of either Process Control, Risk or Fraud Management. The main constraints on customers that influence this deployment approach are cost and resourcing; either bandwidth or skillset.

By using GRC as a Service, customers can avoid some cost challenges by using Opex spend rather than Capex, but can also quickly invest in new technologies as they are not constrained by internal staff bandwidth or skillset. With the Turnkey group taking the load off the internal team, customers can become far more agile in their abilities to leverage new technology. 

In conclusion, I think that there will be a growth of the GRC as a Service offering in a year from now, both in the scale and breadth of products. However, this will still be heavily influenced by the appetite of the customer, many of whom, may still want to retain ownership of their software assets in-house for some years to come. 

With our service successfully up and running with customers, we are certainly able to support organisations in whatever their decisions may be.