The BarnOwl risk management module facilitates a structured and systematic approach to risk management by providing an effective way of prioritising and managing risk and opportunity across the organisation in pursuit of business objectives and strategy. BarnOwl provides a unified view of risk and gives management and staff at every level the ability to identify, assess, manage, monitor and report on risks.

BarnOwl provides an early warning system, drives ownership for risk mitigation, and delivers risk intelligence reporting assisting with business growth and sustainability. The BarnOwl risk management module supports and embeds best practices frameworks such as COSO, ISO31000 and The National Treasury Framework.


 Risk Management Process

Establishing the Context

  • External and Internal context setting
  • Identification of objectives at the
    various levels of the organisation
    (strategic, business and functional)
    including interdependencies




Risk Identification

  • Identify processes risks, controls
    and optionally contributing factors,
    key indicators and consequences
    associated with objectives at every
    level of the organisation including
  • Maintain a centralised library in
    support of a common risk taxonomy
    driving consistency across the

Risk Analysis, Evaluation and Assessment

  • Inherent rating of risks qualitatively
    and quantitatively
  • Identification and rating of controls
    (adequacy and effectiveness)
  • Residual rating of risks qualitatively
    and quantitatively mapped against
    risk appetite and tolerance
  • Automation of risk and control
  • Automation of checklists and surveys

Risk Treatment and Execution

  • Control effectiveness in both
    design (adequacy) and operation
  • Action plans with due dates and
    responsible owners
  • Automated reminders, notifications
    and escalation emails and online
    completion of action plans with full
    audit trails


Monitoring and Review

  • Capturing and analysis of incidents,
    loss events, lessons learnt etc
  • Automated risk reassessment
    notifications as a result of changing
    controls, KRIs, incidents and
  • Monitoring and reviewing that
    the risk control and treatment
    measures are effective in both
    design (adequacy) and operation


  • Flexible report writer, heat maps,
    trends, scorecards, bowtie etc.
  • Consolidated reporting with drill
    down into business units / functions
    and processes
  • Combined Assurance reporting
  • Advanced analytics and business




A central data repository


A centralised database provides one version of the truth with data integrity, consistency and standardisation. This eliminates the problem of multiple spreadsheets scattered around your organisation.

 Audit trails and history

Audit trails track responsibility and enable accountability. Recording history allows for trend analysis.

Support for standard risk assessments and control templates and processes.

This supports common (transversal) processes, risks and controls which provides uniformity and consistency of information across your organisation and simplifies risk administration.

The various registers (objectives, risks, controls and contributing factors) are owned and maintained at every level of the organisation and can be rated qualitatively and  quantitatively.

Drives ownership and accountability of risk management at every level of the organisation.

 Linking of objectives and risks at any or all levels of the organisation.

Facilitates a managed and optimised non-silo based approach to risk management. Provides an early-warning system of the knock-on effects of inter-related risks across the organisation.

 Standard Reporting with drill-down dashboards, heat maps, trends, audit trails and scorecards.

Provides pro-active management of risk at all levels of the organisation mapped against risk appetite and tolerance. Trends and benchmarking highlight problem areas in advance enabling you to take remedial action immediately.

 Custom Reporting

The flexible design of your own reports and extracts into Excel enables you to analyse information the way you want to see it.

 Action plans with ownership, notifications, reminders and escalations.

Facilitates the ownership and ongoing monitoring of tasks which enables management to assess mitigation plans in real-time, driving accountability.

 Incident Management records incidents and loss events.

The tracking of actual and near miss incidents provides insight into emerging risks and control breakdowns enabling pro-active remedial action.



Enquiry Form

or find out how to contact us

BarnOwl Solutions



BarnOwl Risk Management software helps you achieve your strategic objectives and enables a culture of risk planning and control with accountability and ownership throughout your organisation. Continual monitoring of your risk universe gives you comfort and confidence in managing your business.



BarnOwl Compliance software allows you to import the various acts, legislation, policies and procedures that you are required to comply with, link these to associated risks and monitor compliance. This facilitates regulatory compliance and director protection.



BarnOwl Audit software supports any type of audit methodology including risk and control based auditing in support of best practice standards, ensuring that the key risks in your organisation are audited. BarnOwl facilitates all phases of auditing from planning through to reporting with advanced online and offline execution.

© 2018 IDI Technology (Pty) Ltd | PAIA | BBEE Certificate | Tax Clearance Certificate