RSA® Helps Berkshire Bank Speed and Simplify Compliance Processes, Implement SOC-based Security


  • Berkshire Bank required a centralized security infrastructure to accommodate rapid growth and protect the bank against advanced threats
  • RSA® Archer platform helps Berkshire Bank centralize risk and policy management into one tool, removing duplication and eliminating risk of missing important tasks
  • RSA® Security Analytics software allows analysts to pull security data and insights from across the organization, offering greater visibility of today's advanced threats

BEDFORD, MA, July 12, 2016 – RSA, The Security Division of EMC (NYSE: EMC), today announced that Berkshire Bank has upgraded its security infrastructure using an array of RSA® solutions. Executing on a multi-year, multi-stage security modernization plan, the bank integrated the RSA Archer platform and RSA Security Analytics solution into its enterprise security operations. Utilized together, the new tools help to achieve compliance with banking regulations, create a centralized platform to maximize efficiencies as the bank continues to grow, and are designed to strengthen visibility to detect and respond to today's evolving threats.

Founded in 1846, Berkshire Bank and its affiliates provide a broad array of financial services including commercial and retail banking, insurance, and wealth management. Being in a highly regulated industry, Berkshire Bank must ensure the protection of customer data. In the past, handling security processes – from monitoring user access to detecting threat activity – had been a manual process and the tools used were built in silos. As the bank grew substantially over the years, it required a centralized security infrastructure for better visibility, detection of advanced threats, and risk and policy management.

RSA, due to its a strong relationship with Berkshire Bank and its ability to bring several platforms together, suggested the RSA Archer platform as a natural fit when the bank was looking for a new GRC solution. After the implementation of the RSA Archer platform, the bank was able to tie together governance, risk, and compliance functions such as vendor due diligence, risks and controls, policies, business continuity, audit management, and reporting. The use of RSA Archer technology has improved the bank's efficiency by eliminating duplication and the loss of work done in silos, and by automating key business functions. The implementation of the RSA Archer platform has also greatly reduced the time required by auditors to complete bank exams.

Berkshire Bank initially implemented the RSA Security Analytics solution as a means to improve data loss prevention and has now expanded the use of the solution as its centralized Security Operations Center (SOC). Prior to having a SOC in place, it was difficult for Berkshire Bank to detect anomalies on its network. Now the bank has multiple tools sending data to RSA Security Analytics software in order to build rules and alerts that go into security operations. This enables the bank to hunt for abnormalities in behavior and is designed to help identify risks around the transmission of sensitive information within a matter of minutes.

As identity continues to be a larger threat vector, Berkshire Bank is also evaluating new tools such as the RSA Via Access solution. The RSA Via suite of products offer secure, efficient, and simple identity solutions for all users, from any place and device, to any resource.


Michael Carroll, EVP – Chief Risk Officer, Berkshire Bank

"As the bank continues to grow, it's essential to have a platform that is sustainable, scalable and flexible. We've worked with RSA for a long time, and we were confident in its ability to provide a robust, integrated set of technologies. The integration of RSA Security Analytics software into the RSA Archer platform was a major selling point for us, and we're very happy with the results."

Grant Geyer - Senior Vice President, Products, RSA

"Despite the importance of cyber, it's challenging to translate the technical language of security to the language of risk that CEOs and Boards speak. Executives don't understand buffer overflows, SQL injection or cross-site scripting – but they care immensely around how they impact the business. Working in concert, RSA Security Analytics and RSA Archer give Berkshire Bank the visibility it needs to quickly detect and respond to threats on their network, and translate the impact of those cyber events to business risk in one cohesive approach. RSA is honored to have played a role in helping the bank improve its visibility into the risk caused by cyber threats and advance its security-focused mindset."


About RSA

RSA provides more than 30,000 customers around the world with the essential security capabilities to protect their most valuable assets from cyber threats. Berkshire Bank has a financial relationship with RSA and the testimonial provided depict generally-expected results. RSA's award-winning products help organizations effectively detect, investigate, and respond to advanced attacks; confirm and manage identities; and ultimately, reduce IP theft, fraud, and cybercrime. For more information, go to

RSA and EMC are either registered trademarks or trademarks of EMC Corporation in the United States and/or other countries. All other company and product names may be trademarks of their respective owners.

This release contains "forward-looking statements" as defined under the Federal Securities Laws. Actual results could differ materially from those projected in the forward-looking statements as a result of certain risk factors, including but not limited to: (i) risks associated with the proposed acquisition of EMC by Denali Holdings, Inc., the parent company of Dell, Inc., including, among others, assumptions related to the ability to close the acquisition, the expected closing date and its anticipated costs and benefits; (ii) adverse changes in general economic or market conditions; (iii) delays or reductions in information technology spending; (iv) the relative and varying rates of product price and component cost declines and the volume and mixture of product and services revenues; (v) competitive factors, including but not limited to pricing pressures and new product introductions; (vi) component and product quality and availability; (vii) fluctuations in VMware, Inc.'s operating results and risks associated with trading of VMware stock; (viii) the transition to new products, the uncertainty of customer acceptance of new product offerings and rapid technological and market change; (ix) risks associated with managing the growth of our business, including risks associated with acquisitions and investments and the challenges and costs of integration, restructuring and achieving anticipated synergies; (x) the ability to attract and retain highly qualified employees; (xi) insufficient, excess or obsolete inventory; (xii) fluctuating currency exchange rates; (xiii) threats and other disruptions to our secure data centers or networks; (xiv) our ability to protect our proprietary technology; (xv) war or acts of terrorism; and (xvi) other one-time events and other important factors disclosed previously and from time to time in the filings of EMC, the parent company of RSA, with the U.S. Securities and Exchange Commission. EMC and RSA disclaim any obligation to update any such forward-looking statements after the date of this release.