My use case is for security assessment. It's my daily task. I use it for security assessment in Azure. We have tickets where users need to submit details about an application, computer, or server. For Archer, my direct task is to assess the security risk of an application, infrastructure, or computer system. The server submitting the ticket provides all the details in Archer. From my end, I review the complete security portion of the particular application and based on my analysis, I enter a certain assessment into Archer and submit it back to the request service.
PMO Project Manager - Information Security at Redbelt
MSP
Top 10
2023-03-13T15:12:30Z
Mar 13, 2023
We use RSA Archer to connect to the purchasing department so that vendors can sell new projects, and we can connect these sales to our project management. This solution connects both areas to develop demand and activities, allowing us to control technical resources and manage hours. RSA Archer also helps with Project Builder and Microsoft Project to check activities, start and finish times, and layered activities.
The product has a much broader footprint than Workiva and AuditBoard. It's IT risk, IT service management, third-party risk, enterprise risk, internal audit, SOX, regulatory compliance, and regulatory change management. It's a much more integrated end-to-end suite of products or a suite of processes.
RSA Archer is one among the leading GRC software in the market. It serves best for Integrated Enterprise Risk Management. It also has capabilities around Audit Management and Third Party Risk Management.Â
Sr. Internal Auditor at a energy/utilities company with 10,001+ employees
Real User
2021-12-17T13:40:00Z
Dec 17, 2021
I am using RSA Archer for internal audit management. It is used for the entire life cycle for audit, which includes engagement planning, reporting, action management, and so on. It is also used for internal resource management. The timesheet management, resource management, and training are being managed through the same system. It has been deployed on-premises. My organization has 16 groups. It is installed and managed centrally by the headquarters, and we are using the application.
Cyber security consultant at a financial services firm with 1,001-5,000 employees
Consultant
2021-11-29T19:31:10Z
Nov 29, 2021
Our primary use case of this solution is for GRC. I work for a bank and we used this tool to audit our information security team and our cybersecurity team. We had our control library, regulatory requirements, and third-party risks on Archer. So basically, I would say audit, regulatory requirements, third-party risk management solutions, and all kinds of controls, including SOX. These are the integrations we had set up. Right now, it's deployed on-prem.
We customize this solution for our clients. We take all their requirements and prepare the design and format by creating fields, notifications, access controls and workflows. We use all the management features that the solution provides to support our clients. We are customers of RSA Archer and I'm a senior consultant.
GRC Archer Consultant at a tech services company with 10,001+ employees
Consultant
2021-10-29T17:39:56Z
Oct 29, 2021
My primary use cases of RSA Archer are for business resiliency, business continuity management, third party vendor management, IT risk management and some of the other governance and compliance applications. We are partners with RSA and I'm an Archer system administrator.
There are six to seven use cases currently. Most of the time, clients request a customized application. Right now, we're using RSA Archer for risk and issue management— like building a risk registry. We'll respond to risks using findings in the risk registry. So we'll set policies for risk discrimination and acceptance based on inherent and residual risk. We have all kinds of environments, covering DEV, SIT, and UIT. Currently, we have 6.9 Service Pack 2.
Vice President and Risk Management at a financial services firm with 10,001+ employees
Real User
2020-12-09T06:13:00Z
Dec 9, 2020
For Archer, today there is everything from risk management to looking at security and how to track all the security defects. We don't have Archer connected to ServiceNow. We had the better version when I was at Albertsons. Just before I joined UFG, we used it not only tracking deficiencies, but also doing all the risk work and all of the vulnerability management, but we tied it to ServiceNow so we could issue tickets and track stuff. That's the way to do it.
Security Specialist at a tech consulting company with 1-10 employees
Consultant
2020-01-12T12:02:00Z
Jan 12, 2020
I am developing applications in Archer from RSA (Rivest, Shamir, and Adelman). It is quite easy to implement the application. You just configure the workflow, define the forms and how the data is processed in the application. Everything can be configured without coding. You can use a code also to create special functionalities, but it is easy to do almost everything without coding at all.
We use RSA Archer as an Information Security Management Systems Compliance solution in sectors such as business resiliency, operational and enterprise risk management, audit management, public sector, security and IT risk management, third-party governance, and regulatory compliance management.
RSA Archer is a solution designed to help your organization manage policies, controls, risks, assessments, and deficiencies across your lines of business. RSA helps you manage your digital risk with a range of capabilities and expertise including integrated risk management, threat detection and response, identity and access management, as well as fraud prevention.
The solution also allows you to adapt a broad range of solutions to your requirements and is a good option for both big and small...
We primarily use the system control module and specific IT control models for ongoing risk assessment activities. We use it on a day-to-day basis.
My use case is for security assessment. It's my daily task. I use it for security assessment in Azure. We have tickets where users need to submit details about an application, computer, or server. For Archer, my direct task is to assess the security risk of an application, infrastructure, or computer system. The server submitting the ticket provides all the details in Archer. From my end, I review the complete security portion of the particular application and based on my analysis, I enter a certain assessment into Archer and submit it back to the request service.
We use the solution for administration and policy management purposes.
We use the product for policy management, vulnerabilities and risk management. We also use it for business continuity.
We use RSA Archer to connect to the purchasing department so that vendors can sell new projects, and we can connect these sales to our project management. This solution connects both areas to develop demand and activities, allowing us to control technical resources and manage hours. RSA Archer also helps with Project Builder and Microsoft Project to check activities, start and finish times, and layered activities.
The product has a much broader footprint than Workiva and AuditBoard. It's IT risk, IT service management, third-party risk, enterprise risk, internal audit, SOX, regulatory compliance, and regulatory change management. It's a much more integrated end-to-end suite of products or a suite of processes.
RSA Archer is one among the leading GRC software in the market. It serves best for Integrated Enterprise Risk Management. It also has capabilities around Audit Management and Third Party Risk Management.Â
My primary use case of this solution is for government risk compliance, including risk management, cost reviews, and security management.
I am using RSA Archer for internal audit management. It is used for the entire life cycle for audit, which includes engagement planning, reporting, action management, and so on. It is also used for internal resource management. The timesheet management, resource management, and training are being managed through the same system. It has been deployed on-premises. My organization has 16 groups. It is installed and managed centrally by the headquarters, and we are using the application.
Our primary use case of this solution is for GRC. I work for a bank and we used this tool to audit our information security team and our cybersecurity team. We had our control library, regulatory requirements, and third-party risks on Archer. So basically, I would say audit, regulatory requirements, third-party risk management solutions, and all kinds of controls, including SOX. These are the integrations we had set up. Right now, it's deployed on-prem.
We use RSA Archer in my organization for assessments.
My primary use cases are IT risk management, policy management, IT compliance management, vendor risk management, and vulnerability management.
We customize this solution for our clients. We take all their requirements and prepare the design and format by creating fields, notifications, access controls and workflows. We use all the management features that the solution provides to support our clients. We are customers of RSA Archer and I'm a senior consultant.
My primary use cases of RSA Archer are for business resiliency, business continuity management, third party vendor management, IT risk management and some of the other governance and compliance applications. We are partners with RSA and I'm an Archer system administrator.
There are six to seven use cases currently. Most of the time, clients request a customized application. Right now, we're using RSA Archer for risk and issue management— like building a risk registry. We'll respond to risks using findings in the risk registry. So we'll set policies for risk discrimination and acceptance based on inherent and residual risk. We have all kinds of environments, covering DEV, SIT, and UIT. Currently, we have 6.9 Service Pack 2.
For Archer, today there is everything from risk management to looking at security and how to track all the security defects. We don't have Archer connected to ServiceNow. We had the better version when I was at Albertsons. Just before I joined UFG, we used it not only tracking deficiencies, but also doing all the risk work and all of the vulnerability management, but we tied it to ServiceNow so we could issue tickets and track stuff. That's the way to do it.
I am developing applications in Archer from RSA (Rivest, Shamir, and Adelman). It is quite easy to implement the application. You just configure the workflow, define the forms and how the data is processed in the application. Everything can be configured without coding. You can use a code also to create special functionalities, but it is easy to do almost everything without coding at all.
We use RSA Archer as an Information Security Management Systems Compliance solution in sectors such as business resiliency, operational and enterprise risk management, audit management, public sector, security and IT risk management, third-party governance, and regulatory compliance management.
We use this solution for task management and reporting, with a focus on Risk Management services. We have this solution deployed on-premises.