RSA Archer® Third Party Governance

Manage your third-party relationships and engagements while reducing risks and monitoring performance.

  • Automate and streamline oversight of third-party relationships.
  • Fulfill regulatory obligations and implement best practices across the third-party management lifecycle.
  • Get an accurate picture of third-party risk, quickly allocate resources to those that are most pressing and make better business decisions.

RSA Archer Third Party Governance

Learn how RSA Archer Third Party Governance can help you reduce risks inherited from third parties to the extended enterprise and supply chain and monitor performance of key vendors and suppliers.

Featured Resources

Solution Brief

RSA Archer Third Party Governance

This solution brief provides an overview of the features, benefits and use cases that comprise the RSA Archer Third Party Governance solution.

Access the Solution Brief



Understand Your Third-Party Relationships

Catalog and assess which third parties your organization is using and how much risk they pose. Understand your third-party dependencies and associated risk to optimize third-party performance and prevent surprises and losses.


Monitor Third-Party Relationships

Stay current with new or updated vendor relationships and monitor material changes occurring in existing third-party relationships. Ensure that no material risk with third-party relationships exists.


Make Decisions and Take Action

Make consistent decisions about third-party risks in accordance with your organization's risk appetite. Ensure that risk treatments are implemented where appropriate. Consistently evaluate risk and apply controls and risk transfer techniques within your organization's risk tolerance.


Facilitates fulfillment of regulatory obligations and brings third-party risks into a governance, risk and compliance program.

Makes complex third-party governance easier to understand and manage.

Enables better monitoring of third-party engagements and performance metrics.

Enables consistent identification, assessment, treatment and monitoring of third-party supplier risks.

RSA Archer Third Party Governance

RSA Archer Third Party Catalog

Document all of your organization’s third-party relationships and associated contracts, as well as the business units and named individuals in your organization who are responsible for each vendor relationship. Use a single repository to aggregate all third-party information, including profiles, third-party business hierarchy, contacts, facilities, accountable third-party contacts and more.

RSA Archer Third Party Risk Management

Leverage a series of risk assessment questionnaires to assess third parties’ control environments and collect relevant supporting documentation for further analysis. Factor the results of these questionnaires into a determination of the organization’s residual risk across several risk categories.

RSA Archer Third Party Governance

Perform integrated third-party risk and performance management. Document performance metrics and service level agreement metrics for each third-party product and service to ascertain whether each engagement is being delivered in accordance with expected performance. Monitor a third party’s overall performance, document any risk and performance issues, and establish remediation plans.

RSA Archer Third Party Engagement

Gain a holistic understanding of your organization’s dependency on various third parties across all of your business units. Catalog the products and services they deliver to your organization according to each business process and business unit they support. Perform inherent risk assessments across multiple risk categories and more.

"We chose RSA Archer because of its ability to bring several platforms together. We can tie our vendor due diligence into the risks and controls surrounding that vendor, and then tie it into business continuity so that we know if a vendor fails what the impact would be to the bank. ... That ability to create a sort of GRC universe at Berkshire Bank was what attracted us to the [RSA] Archer tool."
​Melissa Taylor
AVP, GRC Officer

Berkshire Bank


RSA Archer Maturity Model Snapshot: Third Party Governance

RSA Archer Maturity Models guide organizations through the journey from baseline risk management to optimized processes that balance opportunities and risks. View the Maturity Model Snapshot to discover the stages of maturing your third-party management.

Read the White Paper


Protecting Today’s Complex IT Infrastructures with RSA Business-Driven Security™ Solutions

This webinar highlights the security risks associated with four major technology trends: the cloud, mobile devices, IoT and third-party access.

Watch the Webcast



White Papers

  • Breaking Through the Value Ceiling Have GRC technologies reached the limits of the enterprise value they can provide? This paper uses the RSA Archer reference architecture to answer that question.

Want a Demo?

Sign up for a free demo today and watch our products in action.

Ready to Buy?

It's easy. Speak with an RSA expert anytime to request a quote.