RSA Archer Reviews

Vendor: RSA

4.0 out of 5

41 reviews
92% willing to recommend

1,135 followers

What is RSA Archer?

RSA Archer is a solution designed to help your organization manage policies, controls, risks, assessments, and deficiencies across your lines of business. RSA helps you manage your digital risk with a range of capabilities and expertise including integrated risk management, threat detection and response, identity and access management, as well as fraud prevention.

Get the RSA Archer Buyer's Guide and find out what your peers are saying about RSA Archer, MEGA HOPEX, OneTrust GRC and more!

RSA Archer is the #1 ranked solution in top GRC solutions, #1 ranked solution in top IT Governance solutions, and #2 ranked solution in top IT Vendor Risk Management solutions. PeerSpot users give RSA Archer an average rating of 8.0 out of 10. RSA Archer is most commonly compared to MEGA HOPEX: RSA Archer vs MEGA HOPEX. RSA Archer is popular among the midsize enterprise segment, accounting for 59% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a educational organization, accounting for 55% of all views.

Helped 838,533 peers since 2012

Featured reviews

IMRAN ALMARZOOQI

Head OT Risk Management & Compliance at Abu Dhabi National Oil Company

The tool basically automates whatever processes you already have, so I cannot specify improvements in that regard. However, my main issue with Archer is the graphics. The graphics have always been lacking. I always need to depend on another tool to read information from Archer to have better dashboards. It is like using Linux, and it has a Linux mindset and interface. I want to use Archer for top management and CEOs, but it looks too technical, and the dashboards are not really friendly. They are bulky, like opening an old Nintendo system from nineteen-ninety. The management agrees that Archer lacks in terms of presentation and dashboarding. It is complex, not user-friendly, and bulky. The interface just looks old.

Read full review

IMRAN ALMARZOOQI

Head OT Risk Management & Compliance at Abu Dhabi National Oil Company

The dashboarding in this solution needs to be improved, specifically the graphics. I am trying to find other solutions because I want to create management dashboards. This product has its own built-in design capabilities and how to present things, but it doesn't have a bullet chart. The bullet chart is the best graph for my purposes, and it should be available for inclusion in the dashboards. We are doing audits and risk management, and there are timelines related to when things are due. All of that can be very easily seen in a bullet chart graph, but what is available now are pie charts, bar charts, and the simple information that is not as meaningful. The reporting features are very basic, PowerPoint-like capabilities, that should be improved. They should be more like the features available in Power BI, or Tableau. As a workaround, I tried dumping the information from Archer into these two solutions, but it would be much better to have the functionality built-in. When it comes to searching, the filtering process is not very intuitive. If I want to filter then I have to use too many buttons to get to what I'm trying to search for. If they can simplify the researching process then that would be good.

Read full review

Raviteja Nekkanti

Senior Information Security Consultant at CGI

My use case is for security assessment. It's my daily task. I use it for security assessment in Azure. We have tickets where users need to submit details about an application, computer, or server. For Archer, my direct task is to assess the security risk of an application, infrastructure, or…

Read full review

RSA Archer mindshare

Product category:

As of February 2025, the mindshare of RSA Archer in the GRC category stands at 16.6%, down from 18.3% compared to the previous year, according to calculations based on PeerSpot user engagement data.

GRC

PeerAnalyst reports

Type	Title	Date
Category	GRC	Feb 20, 2025	Download
Product	Reviews, tips, and advice from real users	Feb 20, 2025	Download
Comparison	RSA Archer vs OneTrust GRC	Feb 20, 2025	Download
Comparison	RSA Archer vs AuditBoard	Feb 20, 2025	Download
Comparison	RSA Archer vs MEGA HOPEX	Feb 20, 2025	Download

Title	Rating	Mindshare	Recommending
MEGA HOPEX	3.9	1.6%	86%	41 interviews Add to research
OneTrust GRC	4.1	8.8%	78%	14 interviews Add to research

Valuable Features

The most valued features of RSA Archer include its enterprise module's configurability, ease of use, advanced workflows, and robust integration capabilities. Users appreciate its automation for business processes, user-friendly interface, and comprehensive dashboards. The tool excels at risk management and compliance, supports diverse data integration, offers customizable permissions, and provides efficient reporting. Its intuitive design and minimal coding requirements enhance usability, making it adaptable and flexible for various business needs.

"The tool has stability, and it allows me to automate whatever process I have."
"The tool has stability, and it allows me to automate whatever process I have."
"Risk management is one of the most impressive features of Archer, especially with the recent restructuring of the user interface."

Room for Improvement

RSA Archer needs improvements in graphical interfaces, customization options, and user-friendliness. Users find the dashboarding lacking in flexibility and presentation. The reporting and search functionalities are basic, comparable to outdated systems. They experience difficulties with API integrations, complex workflows, and data feed management. Technical support and update processes are inadequate. Improvements are needed for greater scalability, performance, and language support. The emphasis is on modernizing the interface and simplifying complex processes.

"The management agrees that Archer lacks in terms of presentation and dashboarding. It is complex, not user-friendly, and bulky."
"The interface just looks old."
"A remaining area for improvement is integration. There should be built-in integration mechanisms, for example, for organizations switching from platforms like ServiceNow to Archer, instead of custom integrations for each client."

ROI

RSA Archer allows organizations to save costs by eliminating the need for external services, enhancing internal processes, and automating risk management. It centralizes data, improving risk and governance processes while mitigating potential losses. Users find that it streamlines operations, saving time previously spent on management meetings and manual tasks. The subscription model offers flexibility, and many see a return on their investment within a few months by using RSA Archer's capabilities effectively.

Pricing

RSA Archer pricing is perceived as high, particularly for small to medium-sized enterprises, yet large organizations find it justified given its extensive functionalities. Licensing costs, typically around $100,000, cover a basic solution, with additional charges for extra features or licenses. Although Archer offers transparent pricing structures and package options, its costliness often leads smaller companies to opt for cheaper alternatives. Many believe the robust capabilities and customization offered justify the expense for larger enterprises.

"The pricing is okay. The licensing costs are very reasonable; it is very affordable to us."
"The solution’s pricing is moderate."
"The price of the solution is very affordable."

Popular Use Cases

RSA Archer is used for risk management, compliance, audit management, and governance. Organizations configure it for business resiliency, vendor management, cybersecurity, and policy management. It's employed in sectors like banking for enterprise risk and government regulations. Users implement custom applications, manage vulnerabilities, and create workflows without extensive coding. RSA Archer integrates with tools for incident management and connects departments for project and resource management. It's deployed on-premises and via SaaS across various sectors.

Service and Support

RSA Archer's customer service is generally strong, with users praising their responsiveness, knowledgeable support team, and active user community. However, some feedback highlights room for improvement, such as faster response times and increased technical expertise for initial support levels. Communication with RSA Archer is frequent, with updates and issues often resolved through tickets and daily scrum calls. Users value the ability to propose new features and the promptness in addressing complex issues, though delays can occur.

Deployment

Organizations found RSA Archer's initial setup complex, especially in larger environments with extensive customization requirements. Installing typically ranges from a few hours to six months, depending on the scale and intricacy. Small companies, using documentation, manage to install it quickly with minimal resources. Larger companies face challenges due to multiple modules and custom requirements, requiring specialized knowledge. Users appreciate its vast features and ease of deployment once familiarized with the platform.

Scalability

RSA Archer is recognized for its scalability, with users highlighting the ease of adding applications and users. It supports a large number of users, although scaling may require additional resources and expertise. Users note its flexibility and adaptability but mention the need for experienced personnel to fully utilize its capabilities. Some users face challenges with resource demands and setup complexity, yet its inherent design aids in scaling across departments and multiple organizations.

Stability

RSA Archer demonstrates strong stability, often meeting user expectations with few issues. Some reports note resource intensity and a need for infrastructure enhancements as data scales. While recent upgrades improved performance, older versions experienced slowness. Load management and maintenance are essential for optimal performance. Users typically rate its stability between seven and eight out of ten, considering varied performance influenced by server resources and usage scales. Organizations observe performance dips during peak usage, but consistent improvements are recognized.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our RSA Archer Buyer's Guide for additional reliable information.

Review data by company size

By reviewers

By visitors reading reviews

Top industries

By visitors reading reviews

Educational Organization

55%

Financial Services Firm

12%

Computer Software Company

Government

Manufacturing Company

Energy/Utilities Company

Insurance Company

Retailer

Healthcare Company

Hospitality Company

Real Estate/Law Firm

University

Media Company

Non Profit

Comms Service Provider

Legal Firm

Construction Company

Recreational Facilities/Services Company

Engineering Company

Outsourcing Company

Compare RSA Archer with alternative products

Learn more about RSA Archer

The solution also allows you to adapt a broad range of solutions to your requirements and is a good option for both big and small companies.

RSA Archer Features

RSA Archer has many valuable key features. Some of the most useful ones include:

Application builder
Advanced business workflow
System integration
Search, reports, and dashboards
Access control
Globalization
Audit management
Privacy program management
Security incident management

RSA Archer Benefits

There are many benefits to implementing RSA Archer. Some of the biggest advantages the solution offers include:

Taxonomy and data structure: With RSA Archer, you can build and maintain an inventory of personal data processing activities and assets, utilizing a purpose-built taxonomy and data structure.

Easy tracking: RSA Archer enables you to track data retention schedules and execute a checklist as it relates to processing activities.

Smooth management: By using RSA Archer, you can manage activities related to notifications and consents linked to the processing activity inventory.

Improve information assurance programs: RSA Archer enables agencies to improve information assurance programs for continuous monitoring and assessment and authorization.

Compliance: By providing compliance management, RSA Archer allows you to consolidate information from multiple regulatory bodies and establish a sustainable, repeatable, and auditable regulatory compliance program.

Business continuity: With RSA Archer, you can automate business continuity and disaster recovery planning to protect your organization in the event of a crisis.

Reviews from Real Users

Below are some reviews and helpful feedback written by PeerSpot users currently using the RSA Archer solution.

A Specialist, RSA Archer at a tech services company, says, “RSA Archer is a valuable tool because it can manage the end-to-end functioning of any enterprise GRC module, such as compliance and risk management or business continuity plans and the entire BCM module. RSA Archer also provides many out-of-the-box solutions, which are use cases derived from the standards for GRC or risk management, governance, and compliance. It provides an end-to-end mechanism for business users on a single platform. That includes reporting, managing workflow, creating documentation, or tracking a process where you need to get approval from the various levels within the organization's hierarchy.”

PeerSpot user Krishnendu S., Vice President at a financial services firm, mentions, "It is enterprise-wide accessible. So, it is very helpful for all the employees in our bank. They can log in and do their risk management activities. It has a few inbuilt modules that are helpful for doing risk management activities, such as issue management, risk identification, risk assessment, and policy exception management. It also has some inbuilt workflows inside these modules. They are also helpful."

A Sr. Internal Auditor at an energy/utilities company comments, "Its user interface is pretty neat, and there is flexibility in generating the data. You can customize reports at any level. You can directly get reports in Tableau format. If you want to generate statistical data, you can create reports with graphs. There is an adequate amount of flexibility for changing the format, the type of graphs, etc."

Another PeerSpot user, Manash B., Technology Manager at a tech services company, explains, "RSA is a very rich application. I like its adaptive suggestion, where based on your users and the class of data, it can actually recommend you the proper control to choose. For example, we have been using PCI DSS as an NIST. So based on application feedback, it will provide you with a suggestion on which control objective needs to be set. Based on that, you can make a decision—you don't need to take the suggestion, but you can customize that particular provided suggestion. RSA Archer's workflow is also good, in terms of process automation."

RSA Archer was previously known as Archer.