RSA Archer® Controls Assurance Program Management
Document, assess, and report on the performance of controls across your business.
- Systematically document the control universe.
- Streamline compliance processes and workflows for evaluating performance of controls.
- Apply clear, accurate controls guidance in support of any compliance objective.
Reduced time spent researching and linking external compliance requirements to internal controls
Faster identification and resolution of potential issues through a centralized portal
Increased control testing and reporting accuracy with reduced effort
Structured controls repository and taxonomy.
Automated testing for a wide range of process and technical controls.
Issues management for activities related to regulatory and corporate obligations.
Ability to integrate testing results from external systems.
We can establish our control objectives, set tests for those objectives, and send out questionnaires to have the owners of the different controls actually self audit. This then lets us attach a quantifiable measurement to our compliance. So we can take a particular service line and produce a percentage of HIPAA compliance and then also provide a gap analysis of what's remaining, to get them fully compliant with the HIPAA rule.
Director of IT Security @ St. Luke's Health System