Licensing Options

Expand All


Risk User Licence

Audit User Licence

Lite Licence (Web only)

Incident Licence (Web only)

Open Licence (Web only, Free to unlimited users)

Organisational Hierarchy Maintenance

Define your strategic units and business units in a multi-level hierarchy

Process Hierarchy Maintenance

Define your processes and business activities in a multi-level hierarchy and apply them to the relevant organisation unit

User / Group Access Control

Comprehensive user / group permissions management to restrict access to functions and the organisational structure, process tree and templates. The user list can be synchronised to your Active Directory

System Parameter Configuration

Configure various system parameters (Action Plans, Currency, Working Hours etc.)

Risk Parameter Configuration

Configure various Risk parameters (Risk Rating Methodology; Categories & Classifications for Objectives, Risks, Contributing Factors, Controls, Key Indicators, Incidents, etc.)

Compliance Parameter Configuration

Configure various Compliance parameters (Levels, Ratings, Regulatory Types, Regulatory Categories etc.)

Audit Parameter Configuration

Configure various Audit parameters (Project Types; Project Ratings; Audit Steps; Audit Objective Ratings; Categories & Classifications for Audit Procedures, Findings, Expenses, etc.)

Email Configuration

Configure the various notification and reminder emails formats and frequencies

Define System Custom Fields

Add custom fields to various system entities (Action Plans, Forensics, Processes, Users, Units)

Define Risk Custom Fields

Add custom fields to various Risk entities (Combined Assurance, Contributing Factors, Controls, Key Indictors, Objectives, Risk Assessments, Incidents, & Risks)

Define Compliance Custom Fields

Add custom fields to the Regulatory Requirements Compliance entity

Define Audit Custom Fields

Add custom fields to various Audit entities (Audit Control Ratings, Audit Objectives, Audit Procedures & Results, Expenses, Findings, Follow Ups, Project Plans, Project Processes, Projects,

Import System Data

Import Users, Units, Processes & Templates from Excel

Import Risk Data

Import Action Plans, Combined Assurance, Incidents, Impact Value Matrix, Key Indicators, Objectives, Risks, Contributing Factors & Controls from Excel

Import Audit Data

Import Project Plans, Audit Objectives, Audit Procedures & Findings from Excel

System Reports

Report on the security setup, user logs etc.


Risk User Licence

Audit User Licence

Lite Licence (Web only)

Incident Licence (Web only)

Open Licence (Web only, Free to unlimited users)

Template Library

Maintain Templates for standard structures of Objectives, Risks, Contributing Factors, Controls, Votes and Workshops and apply them to the relevant Units or Processes

Objectives, Risks, Controls & Contributing Factors

Maintain Libraries for Objectives, Risks, Contributing Factors, and Controls and apply and assess them in the relevant Units

Votes, Surveys & Questionnaires

Enter responses

Enter responses

Maintain Votes (for Objective, Risk, or Control assessments), Surveys or Questionnaires and collect responses.


Conduct workshops to facilitate risk identification and assessment`

Risk Assessment Projects

Create and run projects to manage risk assessments

Risk Reporting, Dashboards & Score Cards

Report listings and aggregated reporting for a selection of units, Dashboards & Score Cards

Action Plans

Update progress

Create , update, delete and report on Action Plans

Incident Capture

Create, update and delete Incidents against Units, Risks, Contributing Factors, or Controls

Incident Reporting

Report on Incidents

Key Indicators

Enter KI values

Create, update and delete Key Indicators against Risks (Key Risk Indicators), Controls (Key Control Indicators) and / or Objectives (Key Performance Indicators), Enter Key Indicator Values, and report on Key Indicators

Custom Queries

Apply and execute custom data queries

Business Intelligence (additional licence)

A data warehouse to facilitate the analysis of the Risk, Action Plans, Incidents & Key Indicators data using tools such as Excel or Power BI


Risk User Licence

Audit User Licence

Lite Licence (Web only)

Incident Licence (Web only)

Open Licence (Web only, Free to unlimited users)

Regulatory Universe

Capture and maintain or import acts (yours or ones supplied by a 3rd party compliance content provider) in checklist format and / or Compliance Risk Management Plans (CRMP). Acts with provisions can be applied to the areas in the organisation where they are relevant and can be rated according to their seriousness and likelihood.

Compliance Risk Management Plans

Generate and rate Compliance Risk Management Plans (CRMPs).

Compliance Survey / Checklist

Enter responses

Enter responses

Create and maintain a compliance questionnaire and collect responses

Survey / Checklist Aggregated Reporting

An aggregated and comprehensive report on the compliance ratings per business unit with drill down into category, sub category and each compliance question

Business Intelligence (additional licence)

A data warehouse to facilitate the analysis of the Compliance data using tools such as Excel or Power BI


Risk User Licence

Audit User Licence

Lite Licence (Web only)

Incident Licence (Web only)

Open Licence (Web only, Free to unlimited users)

Audit Planning

Audit universe planning and scheduling. Create audit projects from an audit plan or directly for units / processes. Select the relevant Project File Organiser (PFO) template, audit programme, risks and controls to audit. Update the project detail registers (tasks, resources, planned hour allocations).

Audit Execution

Execute the audit based on the Project File Organiser (PFO) / audit programme either online or offline with preparer, reviewer and sign off workflow. Complete control adequacy testing and rating. Complete effectiveness testing using audit procedures and sample testing. Attach evidence. Update control effectiveness rating. Capture findings / recommendations. Import management comments on findings. Capture action plans. Capture audit risk assessment ratings. Review audit work using the PFO or per audit objective. Rate the audit objectives. Capture & clear review notes.

Audit Reporting

Generate standard findings reports with action plans. Produce the final audit reports (in Microsoft Word).

Audit Consolidated / Audit Committee Reporting and Dashboards

Produce a consolidated audit committee report and dashboards showing aggregated data displayed as various chart options, with full drill down capability that can be exported to Microsoft Word.

Business Intelligence (additional licence)

A data warehouse to facilitate the analysis of the Audit data using tools such as Excel or Power BI

Subscribe to BarnOwl's Information Portal

Subscribe to BarnOwl’s information portal today and receive our monthly newsletter with the latest GRC and audit insights, industry updates, priority access to exclusive events, tip of the month and more straight to your inbox!


GRCReady is the official provider of risk management content for the BarnOwl GRC software solution. GRCReady provides extensive risk libraries and risk maturity checklists/surveys which are integrated with BarnOwl.

GRCReady, based in Australia, offers a comprehensive and holistic library of products and associated services including templates, policies, procedures, guidelines, checklists etc.t to help owners and directors of SMEs, startups and corporates to satisfy their corporate governance, risk management and regulatory compliance needs.

By integrating GRCReady's rich content libraries into BarnOwl's GRC software, we are able to offer our clients a state of the art, turnkey GRC solution.

GRCReady provides, arguably, the most comprehensive risk and governance maturity assessment framework with detailed steps and artefacts. BarnOwl's survey and action plan portal provides a simple and effective way to monitor and report on your current state of risk maturity and suggest and drive remedial action plans to take you to your desired state of risk and governance and maturity.

By integrating GRCReady's risk libraries with the BarnOwl GRC software, means that you don't have to start from scratch. In addition, ongoing updates and insights keep you informed and up-to-date on best practices.


Season Rhyrhm is BarnOwl's preferred partner in Botswana assisting with BarnOwl implementations, support services and client relationship management.

Season Rhythm is an established and distinguished player in the ICT sector in Botswana, specialising in a range of cutting-edge solutions. Season Rhythm leverages BarnOwl to provide tailored GRC&A services to businesses in Botswana facilitating:

  • Governance: Enabling organisations to establish and uphold effective governance structures, ensuring transparency and accountability in decision making processes.
  • Risk Management: Equipping businesses with tools to identify, assess and mitigate risks, safeguarding against potential threats and ensuring continuity in a business environment.
  • Compliance: Ensuring adherence to regulatory frameworks and industry standards, protecting businesses from non-compliance penalties and fostering trust among stakeholders.
  • Audit: Streamling the audit process with comprehensive tools for planning, execution and reporting, driving efficiency and accuracy in internal audit and compliance assessments.


BarnOwl works closely with NSA in the field of GRC and assurance.

NSA is an education and risk & assurance advisory services provider, consisting of a team of professional consultants and facilitators who have been hand-picked on experience and expertise. NSA services include:

  • Strategic intervention: 30 expert consultants facilitating strategic planning, combined assurance, effective governance and risk management assignments.
  • Continuous professional development: CPD training for internal auditors, external auditors, accountants, risk managers, government officials, and psychologists.
  • Online learning: accredited training for the local government sector, including the Municipal Financial Management Program and Supply Chain Management.
  • Online skills development: skills in demand for 2030, including cybersecurity, Protection of Personal Information, Artificial Intelligence, Robotics and programming.

BarnOwl and NSA work closely with our clients to align and enable best practice GRC and assurance framework & methodologies within BarnOwl. NSA regularly presents online information sharing sessions together with BarOwl.


Nico Technologies is BarnOwl's preferred partner in Malawi assisting with BarnOwl implementations, support services and client relationship management.

Nico Technologies Limited is an established IT products and services provider in Malawi, specialising in managed IT services, IT infrastructure services, IT project management, digital solutions, digital transformation and IT advisory.

Nico Technologies uses BarnOwl extensively within their own organisation to automate and manage their own risk and compliance functions.


Morgan Solus is BarnOwl's preferred business continuity specialist consulting firm with its 'BCM toolkit' software. BarnOwl GRC together with the BCM toolkit, provides a comprehensive risk management and BCM software solution.

Morgan Solus is a specialist consultancy firm focusing on risk, resilience and continuity. Morgan Solus's core services are centred on resilience, crisis management, business continuity (BCM), IT services continuity and disaster recovery (DRP) and training.

The BCM toolkit ensures a consistent approach to implementing BCM and IT disaster recover and cuts down implementation timelines by 60% whilst driving up successful outcomes.

BarnOwl's extensive GRC and assurance functionally coupled with Morgan Solus's BCM toolkit provide the ultimate risk management and BCM software solution.


Arbutus Analytics is Barnowl's preferred data analytics software. BarnOwl GRC integrated with Arbutus Analytics, provides the ultimate in continuous risk monitoring.

Arbutus Analyzer is a powerful data access and analysis solution specifically developed for auditors, business analysts, and fraud investigators. Its robust performance and user-friendly features offer you the ability to access and analyse data quickly and simply.

BarnOwl GRC, integrated with the real-time metrics from Arbutus provides a strategic early warning system driving preventative and predictive capability facilitating effective business decision making business improvement. with local sub-sahara African distributor


Barnowl works closely with Pax Resilience in the field of GRC and sustainability.

Pax Resilience offers solutions in risk, resilience and cyber security. Pax Resilience strive to create peace of mind by assisting you to build the resilience in your organisation so essential to survive and thrive in the volatile, uncertain, complex and ambiguous world we live in.

Pax Resilience regularly presents online information sharing sessions together with Barnowl.


Paige Law is the official provider of compliance content for the Barnowl GRC software solution. Paige Law provides an extensive Library of South African acts including provisions [CRMPs] and checklists which are integrated with Barnowl.

Paige Law specialises in compliance, Commercial Law, Legal process consultancy, managed legal services and POPIA/ GDPR.


Registered Address

75 Malibongwe Drive
Linden Ext
South Africa

Postal Address

PO BOX 3009


+27 (0) 11 540 9100


More Information:
Product Support:

Let Us Contact You
Let Us Contact You
I grant BarnOwl permission to contact me for marketing purposes*
*You will receive BarnOwl monthly newsletters & invitations to online events. You can unsubscribe at any time.


If you need assistance with your BarnOwl software, there are three channels available to you:


You will be emailed a ticket number from our issue tracking system and your request will be managed in
this ticket until it is completed.


You can view all your existing tickets or create new ones.


+27 (0) 11 540 9112
to speak to a support consultant

Let Support Contact You
Let Support Contact You