Built by practitioners. Designed for real compliance work.
NORVA was created by practitioners who understand the pressure of delivering compliance work that must be structured, defensible, and practical to execute. Our programmed, Excel-native templates turn complex regulatory requirements into clear, repeatable assessment workflows and presentation-ready output. They have been used internationally by major accounting and professional member organisations to support mandated compliance and control reviews.
Meet the NORVA Solutions Team
Kevin Hyams
Founder, CEO and Director | FCA, CPA, CFE
Kevin Hyams
Founder, CEO and Director | FCA, CPA, CFE
Kevin Hyams is the founder, CEO and director of GRC Playbook Limited, trading as NORVA Solutions. With more than 35 years of experience, Kevin has built software tools and methodologies that help organisations strengthen governance, improve control processes, and manage risk more effectively. His work has focused on making complex compliance and control requirements more structured, more practical, and more cost-efficient to deliver. He previously served as Partner-in-Charge of the GRC Practice at a Top 50 U.S. accounting and assurance CPA firm. Kevin is an Irish Chartered Accountant, a U.S. Certified Public Accountant, and a Certified Fraud Examiner.
Kevin Hyams
Founder, CEO and Director | FCA, CPA, CFE
Kevin Hyams is the founder, CEO and director of GRC Playbook Limited, trading as NORVA Solutions. With more than 35 years of experience, Kevin has built software tools and methodologies that help organisations strengthen governance, improve control processes, and manage risk more effectively. His work has focused on making complex compliance and control requirements more structured, more practical, and more cost-efficient to deliver. He previously served as Partner-in-Charge of the GRC Practice at a Top 50 U.S. accounting and assurance CPA firm. Kevin is an Irish Chartered Accountant, a U.S. Certified Public Accountant, and a Certified Fraud Examiner.
Michali Hyams
Co-Founder and Chief Operating Officer | BA, LLB, M.Phil
Michali Hyams
Co-Founder and Chief Operating Officer | BA, LLB, M.Phil
Michali Hyams is Co-Founder and Chief Operating Officer of GRC Playbook Limited, trading as NORVA Solutions. With a legal background and 15 years of experience in policy and advocacy in the NGO sector, Michali brings a practical understanding of how organisations operate when time, budget, and specialist compliance resources are limited. Her experience working closely with smaller organisations highlighted a recurring gap: many need a structured way to assess governance and compliance requirements without adding complexity or cost. That insight helped shape NORVA’s focus on ease of use, efficiency, and accessible, defensible output.
Michali Hyams
Co-Founder and Chief Operating Officer | BA, LLB, M.Phil
Michali Hyams is Co-Founder and Chief Operating Officer of GRC Playbook Limited, trading as NORVA Solutions. With a legal background and 15 years of experience in policy and advocacy in the NGO sector, Michali brings a practical understanding of how organisations operate when time, budget, and specialist compliance resources are limited. Her experience working closely with smaller organisations highlighted a recurring gap: many need a structured way to assess governance and compliance requirements without adding complexity or cost. That insight helped shape NORVA’s focus on ease of use, efficiency, and accessible, defensible output.
Dominic McNamara
Software Engineer
Dominic McNamara
Software Engineer
Dominic McNamara leads the engineering work that underpins NORVA’s programmed assessment templates and supporting software functionality. Originally trained as a Chartered Civil Engineer, Dominic moved into software and mathematical modelling, working for more than a decade on projects in the UK and internationally. Over time, he has developed applications in Fortran, C, C++, C#, and VBA, combining technical depth with a strong problem-solving mindset. His work on corporate governance and risk management software has helped shape the robustness, functionality, and continuous enhancement of the NORVA toolkit. Outside work, Dominic enjoys books, films, and long bike rides through the Wiltshire countryside.
Dominic McNamara
Software Engineer
Dominic McNamara leads the engineering work that underpins NORVA’s programmed assessment templates and supporting software functionality. Originally trained as a Chartered Civil Engineer, Dominic moved into software and mathematical modelling, working for more than a decade on projects in the UK and internationally. Over time, he has developed applications in Fortran, C, C++, C#, and VBA, combining technical depth with a strong problem-solving mindset. His work on corporate governance and risk management software has helped shape the robustness, functionality, and continuous enhancement of the NORVA toolkit. Outside work, Dominic enjoys books, films, and long bike rides through the Wiltshire countryside.
Flexible, ready-to-use templates that simplify assessments, strengthen controls, and align with leading regulatory frameworks.
Built in the familiar Microsoft Excel environment, NORVA’s smart compliance assessment templates are easy to use and quick to deploy. Our growing library of pre-populated, Excel-native templates helps users complete control, compliance, and profitability assessments with minimal training and setup.
Each template includes a fully editable, principles-based policy statement aligned with stakeholder and regulatory expectations. Users can choose the level of review that suits their needs — from a high-level gap analysis, to a diagnostic review, to a full risk and control matrix (RCM) assessment aligned with recognised international frameworks.
Three work modes. One flexible toolkit.
Start with the level of review you need today, and move deeper when required.
Diagnostic Review
Review and risk assessment
Diagnostic Review
Review and risk assessment
Diagnostic Review adds greater depth by helping users assess the quality of controls, identify weaknesses, and evaluate risk in a more structured way. It is well suited to organisations that need more than a high-level scan but are not yet carrying out a full matrix-based assessment.
Diagnostic Review
Review and risk assessment
Diagnostic Review adds greater depth by helping users assess the quality of controls, identify weaknesses, and evaluate risk in a more structured way. It is well suited to organisations that need more than a high-level scan but are not yet carrying out a full matrix-based assessment.
RCM Assessment
COSO-type control matrix assessment
RCM Assessment
COSO-type control matrix assessment
RCM Assessment provides the most detailed level of review, supporting a full risk and control matrix approach aligned with COSO, NIST CSF, and other international frameworks. It is designed for organisations that need robust documentation, defensible evidence trails, and inspection-ready output.
RCM Assessment
COSO-type control matrix assessment
RCM Assessment provides the most detailed level of review, supporting a full risk and control matrix approach aligned with COSO, NIST CSF, and other international frameworks. It is designed for organisations that need robust documentation, defensible evidence trails, and inspection-ready output.