Keva is looking for a fully functional and operating Governance Risk management and compliance (GRC) software as a fully hosted SaaS (Software as a Service) service and its support and maintenance as defined in this Call for Tenders.

Keva is looking for a fully functional and operating Governance Risk management and compliance tool as a fully hosted SaaS (Software as a Service) service and its support and maintenance as defined in this Call for Tenders. The system must be readily compatible with Keva's current risk management processes and development plan.

Keva has a simple organisation structure and one office. We gather, store and report risk management information on all organisation levels and also for projects, ad hocs etc. The system will be used for gathering and storing risk management information as well as to analyse and report the risk portfolio for verious both, internal and external users.

The system must be able to handle operational, strategic, compliance and cyber security and information security risks, not forgetting business continuity data. It is also desirable to have ability to composite risks. The emphasis in choosing this tool is on the ability of the system to analyse and produce various kinds of reports of risk positions and to govern risk data with easy-to-use workflow process.