RSA Archer® IT & Security Risk Management

Compile a complete picture of technology-related risks


RSA Archer IT & Security Risk Management

Learn how RSA Archer IT & Security Risk Management can help you reduce the risk of security threats, poor or misaligned security practices, and operational security compliance failures.


Solution Brief

RSA Archer IT & Security Risk Management

This solution brief provides an overview of RSA Archer IT & Security Risk Management, which includes use cases for cyber risk quantification, cyber incident and breach response, PCI management, IT and security policy program management, IT security vulnerabilities program management, IT regulatory management, IT risk management and IT controls assurance.

Read the Solution Brief


Compiles a Complete Picture of Security Risks

RSA Archer IT & Security Risk Management lets you document and report on IT risks and controls, security vulnerabilities, internal and external audit findings, external regulatory obligations, and issues arising from security incidents and failed or deficient internal controls.

Eases Communication with the Board/Makes Board Meetings Less Painful

Use cases for managing security issues, quantifying the financial impact of cyber risk, testing controls, and more include robust reporting features so that you can speak to the board and senior management more accurately and confidently about your organization’s security posture.

Helps You Prioritize Security Investment and Activity

By helping you quantify cyber risk and by giving you unparalleled visibility into security vulnerabilities, incidents, regulatory obligations, and more, RSA Archer IT & Security Risk Management makes it easier to prioritize investments, issue remediation and incident response.

Streamlines Cyber Incident & Breach Response

The use case for cyber incident and breach response gives you the ability to document which IT assets are most critical to your operations, which makes it easier for SOC analysts to zero in on the incidents that matter most. Pe-built workflows are designed to accelerate breach response.

RSA Archer IT & Security Risk Management

Explore the Use Cases

RSA Archer IT & Security Policy Program Management

Establish a scalable, flexible system of governance to manage corporate and regulatory policies and ensure alignment with compliance obligations. Document policies and standards, assign ownership, and map policies to key business areas and objectives.

RSA Archer IT Risk Management

Capture a complete catalog of business and IT assets for IT risk management purposes. Leverage the IT risk register, pre-built risk and threat assessment methodologies, IT control libraries and more.

RSA Archer IT Security Vulnerabilities Program

Offers security teams a big data approach to identifying and prioritizing high-risk cyber threats. Proactively manage IT security risks by understanding the criticality of various assets to business operations and by combining those insights with actionable threat intelligence, vulnerability assessment results and comprehensive workflows.

RSA Archer Cyber Incident & Breach Response

Centrally catalog organizational and IT assets; establish business context to drive incident prioritization and implement processes designed to escalate, investigate, and resolve declared incidents.

RSA Archer Cyber Risk Quantification

Quantify your organization’s financial risk exposure to IT and cybersecurity events leveraging the Factor Analysis of Information Risk (FAIR) methodology for quantitative risk management. Prioritize risk mitigation efforts based on business and financial impact and communicate the impact of cyber risk in financial terms to the board and senior management.

RSA Archer IT Controls Assurance

Assess and report on the performance of IT controls across all assets and automate control assessments and monitoring. Reduce the cost of IT compliance and the risk of compliance-related audit findings by implementing a consistent process for testing IT controls. Establish clear accountability for remediating compliance gaps.

RSA Archer IT Regulatory Management

Stay on top of the constantly changing regulatory landscape, meet compliance requirements and reduce risk. Get an accurate, real-time picture of the state of regulatory compliance across your organization and understand the impact of regulatory changes on your IT assets, IT controls and related business processes.

RSA Archer PCI Management

Streamline the PCI compliance process, simplify stakeholder participation and decrease overall compliance effort and cost. Reduce the risk of credit card fraud and identity theft by implementing an effective PCI compliance program and reduce the risk of costly penalties due to non-compliance.

RSA Archer Information Security Management System (ISMS)

Accelerate the ISO 27001 certification process. Quickly scope your ISMS and document your Statement of Applicability for reporting and verification. Understand relationships between information assets and manage changes to the security infrastructure with a centralized view of your ISMS.

Los Angeles World Airports Chief Information Security Officer Anson Fong discusses why this large city department that owns and operates three airports turned to RSA Archer to help shorten incident response times by centralizing security and risk data.


Analyst Reports

Data Sheets


White Papers


Want a Demo?

Sign up for a free demo today and watch our products in action.

Ready to Buy?

It's easy. Speak with an RSA expert anytime to request a quote.