Skip to main content
TrustRadius
Archer

Archer

Overview

What is Archer?

RSA Archer, from the security, governance, and risk division of RSA Security is an integrated risk management / GRC platform.

Read more
Recent Reviews

TrustRadius Insights

RSA Archer Integrated Risk Management Platform has proven to be a valuable tool for organizations across various departments and …
Continue reading

Archer - Risk Manager

9 out of 10
December 20, 2021
Incentivized
RSA - Archer Integrated Risk Management Platform used for security PIN to login into the secure firm network, to avoid any data breaches …
Continue reading
Read all reviews

Popular Features

View all 5 features
  • Risk management (11)
    10.0
    100%
  • Incident management (13)
    10.0
    100%
  • GRC policy management (13)
    9.9
    99%
  • Common repository of GRC items (12)
    8.7
    87%
Return to navigation

Pricing

View all pricing
N/A
Unavailable

What is Archer?

RSA Archer, from the security, governance, and risk division of RSA Security is an integrated risk management / GRC platform.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

75 people also want pricing

Alternatives Pricing

What is Egnyte?

Egnyte provides a unified content security and governance solution for collaboration, data security, compliance, and threat detection for multicloud businesses. More than 16,000 organizations trust Egnyte to reduce risks and IT complexity, prevent ransomware and IP theft, and boost employee…

What is ManageEngine DataSecurity Plus?

ManageEngine's DataSecurity Plus is a software solution to help users find, analyze, and track sensitive personal data—also known as PII/ePHI— residing in Windows file servers and failover clusters.

Return to navigation

Features

Governance, Risk & Compliance

The goal of IT governance is ultimately to ensure that the processes governing evaluation, selection, prioritization, and funding of competing IT investments are driven by the overall business

9.5
Avg 7.6
Return to navigation

Product Details

Archer Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

RSA Archer, from the security, governance, and risk division of RSA Security is an integrated risk management / GRC platform.

Reviewers rate Risk management and Incident management highest, with a score of 10.

The most common users of Archer are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(50)

Community Insights

TrustRadius Insights are summaries of user sentiment data from TrustRadius reviews and, when necessary, 3rd-party data sources. Have feedback on this content? Let us know!

RSA Archer Integrated Risk Management Platform has proven to be a valuable tool for organizations across various departments and functions. Users have reported using the software to streamline business processes, improve efficiency, and address governance and compliance issues.

One of the key use cases of RSA Archer is in the field of security operations. Users have found it effective in monitoring and implementing controls against cyber attacks and threats. The software integrates with all sources of security alerts and incidents, aiding in prevention, detection, and reaction to security incidents impacting confidentiality, availability, and overall security. It provides a comprehensive solution for managing security operations and helps organizations stay vigilant in protecting their assets.

Another significant use case of RSA Archer lies in its ability to address governance and compliance challenges across the enterprise. Users have reported utilizing the platform for policy and business continuity governance, as well as network monitoring through Security Analytics. The software also aids organizations in meeting external legal, regulatory, and contractual information security requirements by providing tools for compliance management. Additionally, RSA Archer helps manage vendor relationships, contracts, and risk policy exceptions, allowing organizations to effectively manage vendor risk.

Internal audit departments have found RSA Archer to be an invaluable tool for tracking company controls, processes, policies, standards, and changes. The software streamlines the internal audit process by providing visibility into controls design and operating effectiveness throughout the entire organization. It also helps track audit finding remediation and facilitates questionnaire completion during the financial reporting process. Through its approval workflow capabilities, RSA Archer improves accuracy and audit trail when dealing with international footprint.

Organizations seeking consolidation of their systems have found value in implementing RSA Archer. By consolidating their in-house built systems onto a common platform, teams benefit from reporting consolidation and collaboration. This allows for more efficient risk management practices across different departments within an organization.

Overall, users have found that RSA Archer Integrated Risk Management Platform provides a comprehensive solution to address various organizational needs such as security operations management, governance and compliance, internal audit, and system consolidation. The software has proven its effectiveness in streamlining processes, improving efficiency, and aiding organizations in meeting their risk and compliance requirements.

Integration Capabilities: Multiple users have expressed their satisfaction with RSA Archer's integration capabilities, stating that it seamlessly connects with various enterprise systems. This has greatly streamlined business processes and eliminated the need for manual data entry.

Comprehensive Control Standards: Many reviewers have commended RSA Archer for its robust control standards and procedures. They appreciate how the platform provides a framework to address multiple regulatory sources, ensuring compliance with various requirements.

User-friendly Interface: Several users have praised RSA Archer as a user-friendly platform with an easy-to-navigate interface. They find it highly accessible and appreciate the ability to customize the platform without requiring programming skills, allowing them to tailor it to their specific business needs.

Insufficient Documentation for Administrators: Users have found the documentation provided for administrators to be lacking, particularly in areas such as workflows, exporting data, and generating reports.

Challenges with User Interface: Many reviewers have criticized the user interface of the Archer platform, stating that it is not intuitive or user-friendly, especially for non-IT users.

Attribute Ratings

Reviews

(1-13 of 13)
Companies can't remove reviews or game the system. Here's why
Score 10 out of 10
Vetted Review
Verified User
Incentivized
It is well suited for functions/business where processes are defined and stress testing has been done on them for effectiveness. It is not easy to use it for cases where processes are either fractured or doesn't align with business.
Score 7 out of 10
Vetted Review
Verified User
Incentivized
RSA Archer is fantastic at cataloguing, personalizing assessments, raw reporting, and capacity to add custom fields. It is a little clunky around adding contextual information to notifications, peeking into data before attempting to load pages, quick navigation or determining linked (or sub-linked) relationships. These are all concerns that can either be worked around with an appropriate data scheme or with careful administration of the sub-routines.
Score 5 out of 10
Vetted Review
Verified User
Incentivized
Well suited for audit finding remediation and questionnaires for business users. Less appropriate when you expect exceptions to be raised because it isn’t interactive enough to send comments in a dialog. We tell users to have the dialog over email to communicate issues. Once everything is communicated and resolved, this tool allows them to sign off and provide an audit trail and reporting.
rahul garg | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Incentivized
RSA is an eGRC tool which represents governance, risk, and compliance. Moreover, these are the founding pillars of any organization. Disaster recovery department, business continuity, learning department, and security are the major customers for RSA Archer application. It makes their work much simpler and easier to follow. It makes users follow the company policy, and they have to follow it, or else the system will capture irregularities.
Score 2 out of 10
Vetted Review
Verified User
Incentivized
I just don't feel the solution is up to par with modern technology. We may use an older version, but overall the application is hard to interact with and it is very slow and not easy to get from start to end of the process. I feel like I am going back in time when I use the application because it is not intuitive and very clunky to use.
Yitsy Calero | TrustRadius Reviewer
Score 8 out of 10
Vetted Review
Verified User
Incentivized
RSA Archer is well suited in an environment where actionable governance exists and documentation is required ad-hoc for audit requests. The ability to maintain up to date information in an application allows accuracy to exist in ad-hoc reports.
Score 10 out of 10
Vetted Review
Verified User
Incentivized
RSA Archer is better suited for an environment that has at least some maturity in its program. To effectively use this tool, the organization must first understand its various processes and controls in place as they have to be indicated within the tool. Although RSA Archer has "out of the box" templates for these areas, it is essential for the organization to understand these details to properly customize the tool to operate in their environment.
James Byroads | TrustRadius Reviewer
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Archer is better suited for an environment that has at least some maturity in its program, whatever that program may be. If an organization does not know stakeholders involved, or the workflow for its own process, or has the technology in place to perform vulnerability scans, then Archer will probably not be much help. If an organization knows these items, but it's all paper based or in Excel spreadsheets, or they are struggling to report on them, or notify an individual when it is their time to take action in a process, then Archer can be a tremendous help.

Return to navigation