We performed a comparison between MetricStream and RSA Archer based on real PeerSpot user reviews.
Find out in this report how the two GRC solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Key features are usability and ease of configuration. It allows us to have all the information in a single place and provide real-time indicators and information for our executives."
"The interface is mobile-friendly and it is getting a good response from our customers."
"Integration is another great aspect of RSA Archer. From the beginning, integration has been a central focus for RSA, and Archer has always integrated well with most tools on the market today."
"The most valuable features are the advanced workflow and the dashboards. This tool can present data wonderfully to management, and it is easy for them to manage the risk plans."
"The most valuable part of the product is the ease-of-use and the opportunity to create custom security applications easily."
"The most valuable features of RSA Archer are the asset management, risk management, and vendor management."
"It is enterprise-wide accessible. So, it is very helpful for all the employees in our bank. They can log in and do their risk management activities. It has a few inbuilt modules that are helpful for doing risk management activities, such as issue management, risk identification, risk assessment, and policy exception management. It also has some inbuilt workflows inside these modules. They are also helpful."
"The solution has improved my organization by having everything combined to a single platform."
"RSA Archer is a good tool and I have found performing the application, ISMS, and TPRM assessments beneficial."
"I like how Archer requires very little programming ability. A person with minimum coding experience can configure the necessary fields in Archer. It's more of a drag-and-drop solution."
"We would like to have more dashboards and reports, such as geographical and trend reports in the next version. Also, an improvement in the mobile version would be helpful."
"I would like to see out-of-the-box integration with more security, it would be helpful."
"Its customization features could be better."
"The product is expensive."
"GUI could be improved."
"The solution can be a little slow due to the Silverlight feature."
"The user interface needs work. There are many small text boxes, like credit card size's boxes, where we need to input a lot of text. You can't see what you're typing beyond the tiny window, so you have to scroll or type elsewhere and copy-paste it. It's very inconvenient."
"The financial area of RSA Archer has room for improvement."
"The first improvement I would suggest for RSA Archer is a better search feature. The search criteria needs to be improved. Sometimes I do a search and the search doesn't return the exact item I'm looking for. RSA Archer could also be improved by being more user-friendly. Maybe I have been using a limited version of RSA Archer, but I'm not sure whether it has ESG, environmental and social governance. In the next couple of years, ESG is the next feature that will be integrated into GRC tools. I would recommend RSA Archer adds ESG."
"It would be useful for customers if COBIT 2019 could be translated into different languages."
MetricStream is ranked 12th in GRC while RSA Archer is ranked 1st in GRC with 38 reviews. MetricStream is rated 8.6, while RSA Archer is rated 8.0. The top reviewer of MetricStream writes "Reasonably priced, stable, with out of the box deployment, and has good local support". On the other hand, the top reviewer of RSA Archer writes "A rich application with good workflow, but search feature needs improvement". MetricStream is most compared with IBM OpenPages and OneTrust GRC, whereas RSA Archer is most compared with OneTrust GRC, IBM OpenPages, Microsoft Purview Communication Compliance, Workiva Wdesk and Snow Governance & Risk. See our MetricStream vs. RSA Archer report.
See our list of best GRC vendors, best IT Governance vendors, and best IT Vendor Risk Management vendors.
We monitor all GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.