Skip navigation
All Places > Products > RSA Archer Suite > Blog > 2017 > September
2017

I’ve been grappling the past couple of weeks over the definition of a third party.  Typically, we would say that a third party is an organization with whom you have entered into a contract to provide your organization a product or service.  In this sense the credit bureau, Equifax, is a third party to Financial Institutions (FIs) because the credit bureau is providing consumer credit scores to the FIs so they can make decisions on whether to extend credit to consumers.  And while most every FI regularly reports to credit bureaus on the status of their customer’s loan repayments (on time, past due, amount of credit extended, opening a new account, etc.), I would venture to guess that not many FIs seriously contemplated the broader threat they posed.  Similarly, all publicly traded companies were supplying confidential financial information to the SEC but probably didn’t seriously consider the threats that extended beyond the simple delivery of financial information.

 

The significant risk emerging from these two scenarios is not that the FI’s customer information supplied to Equifax was breached or that the publicly traded company’s financial information was breached.  Rather, that if a credit bureau was breached, the probability and impact increased of future loan charge-offs from fraudulent loans and depositor reimbursements from unauthorized account takeover.  And, in the case of the SEC, the real risk was not the unauthorized access of financial information but the effect of front-running on stock prices.

 

Are these examples of a new third party risk management paradigm, black swans, or just a call for more comprehensive third party risk assessment?  Both of these examples present information security risk but in the case of the credit bureau, it presents greater future credit and fraud risk; and in the case of the SEC presents greater stock price risk.  If risk managers are to anticipate these kinds of risk, they need to apply broad brush scenario analysis to understand the breadth and magnitude of risk.  Perhaps no longer is a simple questionnaire good enough to scope the range of risks to be considered when evaluating a third party.  As these examples illustrate, information security risk can be much more than unauthorized access to customer and company information.  It is the related business risk that emerges from the unauthorized access.  Let me know what you think.

As the saying goes, “Everything is BIGGER in Texas”.

 

Steak

Steak

Boots

Boots

Mosquitoes

Mosquitoes

Trucks

Trucks

 

Hilton Anatole in Dallas, Texas

And RSA Charge!

 

This event is the biggest gathering of the RSA Archer community and risk professionals in the world. And the RSA team is ecstatic that we get to host this BIG event in the BIG state of Texas.

 

As a teenager, I spent my summers visiting my sister who worked and lived in Dallas. We toured the 6th Floor Museum, Six Flags, the Dallas Zoo, Reunion Tower, the Fort Worth Botanical Gardens, and J.R.’s ranch, Southfork from the hit TV show Dallas. There are so many BIG and fun attractions to guide your stay while you’re in the Dallas - Fort Worth area for RSA Charge. I’m very excited to plant my boots back in this great city that holds so many memories.

 

In addition to the boundless hospitality and attractions of Dallas, the RSA Charge event brings together the foremost thought leaders to tackle one of the BIGGEST topics for executives and board of directors – RISK. Whether we are talking about cyber risk, operational risk, third party risk, audit risks, resiliency risks, compliance risks, and more, the RSA Archer community at RSA Charge can discuss how they are addressing risk within their organization, learn best practices from their peers, and make new connections to help continue their organization’s risk management journey.

 

I have the privilege of overseeing the Risk and Compliance track Taking Command of Your Risk Management Journey. Sessions for this track are focused on approaches, strategies and recommendations to help build and mature your risk and compliance program. Over the years, I’ve watched the topics for this track mature as your programs and the risk community have matured. The sessions in this track are very well attended as our speakers are seasoned risk pros. And this year’s line-up is BIG! Here are a few highlights:

  • Our friends from AIG, ME Bank, and the BPAY Group will discuss how they are balancing their risk journey;
  • A financial services risk manager will share how their organization demonstrated value to senior leadership;
  • Lockton Companies and RSA will discuss the benefits of mitigating risk through cyber insurance;
  • Berkshire Bank and US Bank will highlight their change request programs; and
  • Duke Energy, Verizon, Raiffeisen Bank, and EY will talk about how they are using an Agile approach when implementing risk programs.

 

There are so many great topics in the Taking Command of Your Risk Management Journey track. Be sure to check them out and add these great sessions to your agenda. Not registered yet? Visit the RSA Charge site to register, schedule hotel accommodations, review sessions, and more.

 

I’ve been attending and moderating sessions for this BIG event since 2009. Having reviewed the sessions for this year’s event, I know that this is a BIG opportunity for you to learn from the best in the risk management industry and get the most out of your technology investment. I look forward to seeing you in Dallas!

 

RSA Charge 2017, the premier event on RSA® Business-Driven Security™ solutions, unites an elite community of customers, partners and industry experts dedicated to tackling the most pressing issues across cybersecurity and business risk management. Through a powerful combination of keynote speeches, break-out sessions and hands-on demos, you’ll discover how to implement a Business-Driven Security strategy to help your organization thrive in an increasingly uncertain, high-risk world. Join us October 17-19 at the Hilton Anatole in Dallas, Texas.

My first (and only) trip to Dallas, TX was as a high school junior to attend the Future Business Leaders of America National Leadership Conference. It was two action-packed days spent connecting with hundreds of amazingly talented and motivated youth, just beginning to embark on our professional journeys, attending sessions and learning valuable skills from notable industry professionals. I find it only fitting that my second trip to Dallas (now many years later) will be spent this time with hundreds of amazingly talented and motivated professionals, sharing ideas about business driven security, risk and compliance, and networking with fellow practitioners at RSA Charge. RSA Charge will bring together the best and brightest GRC professionals at the Hilton Anatole in Dallas, October 17-19.

 

This year will mark my seventh year attending RSA Charge and it never ceases to impress me. For the past three years I have had the pleasure of overseeing the Archer Technical session track. The Archer Technical and Advanced Technical tracks are geared toward Archer administrators who want to expand their knowledge of the RSA Archer platform and learn creative ways to further extend its capabilities. From new Archer admins just starting out, to seasoned Archer experts, there is something for everyone. You can attend sessions delivered by our own RSA Archer engineers, who will be covering the newest features and functionality in the product. (It’s one of the rare occasions you can encounter our engineers out in the wild, and they’re more than happy to talk shop with you.) We also have customer-led sessions delivered by fellow RSA Archer admins who will share tips for managing the Archer platform, lessons learned, and highlight their own custom implementations that expanded the power of the RSA Archer framework. I’ve seen some of the most innovative ideas come from our customers and partners!

 

Here are a few of the highlights in the RSA Archer Technical track:

  • Hear Humana talk about how they migrated their business processes from a sunsetting system into RSA Archer.

  • Learn how U.S. Bank used the workflow capabilities in RSA Archer to centralize previously isolated processes across different internal teams and manage critical documentation through an integration with SharePoint.

  • Get a first look at new RSA Archer Platform 6.3 features, including our System Administrator dashboard for monitoring your RSA Archer deployment and new Bulk Record Operations that make it even easier to update your data in Archer.

  • Attend the “Stump an Admin” session where you’ll have the opportunity to seek answers to your own questions about the RSA Archer platform from a panel of veteran Archer Administrators. Can you stump the admins?

See the full Archer Technical track agenda here. And if that’s not enough, explore all of our other tracks in the full agenda!

 

The RSA Archer community is a vast network of technical and business professionals who have a genuine desire to support each other and share their knowledge and expertise. Many attendees have been coming to RSA Charge (and its predecessor, the Archer Summit) for years. It’s a culture and atmosphere unlike any other. Whether you are new to RSA Archer or you’ve been with us for years, there are sessions, working groups, hands-on labs, social events and more for you. If you haven’t yet registered, what are you waiting for? Follow this link to register now! If this will be your very first RSA Charge experience, welcome to the RSA Archer family. Prepare to be inspired. See you in Dallas!

 

RSA Charge 2017, the premier event on RSA® Business-Driven Security™ solutions, unites an elite community of customers, partners and industry experts dedicated to tackling the most pressing issues across cybersecurity and business risk management. Through a powerful combination of keynote speeches, break-out sessions and hands-on demos, you’ll discover how to implement a Business-Driven Security strategy to help your organization thrive in an increasingly uncertain, high-risk world. Join us October 17-19 at the Hilton Anatole in Dallas, Texas.

Mason Karrer

Back in the Saddle

Posted by Mason Karrer Employee Sep 12, 2017

Did you know IDC reported that companies with active GRC programs resolve their security breaches 63% faster and are 33% more efficient at assessing their risks? Would you like to hear directly from leading companies achieving those kinds of GRC successes? This year RSA Charge is rolling through the Big-D...Dallas, TX!! In the land of "go big or go home," the world's largest gathering of GRC professionals is shaping up to be bigger and better than ever! Registration for the October 17-19 event is filling up fast. Don't miss out!

 

Consider the following: According to a PWC study, 62% of companies expect cyber risk to cause disruption in the next 3 years. EY also released research showing that 86% of respondents did not believe their cybersecurity functions fully meet the organization’s needs. And the cost of data breaches is projected to exceed $2T globally by 2019 according to Juniper Research. What do these stats have in common? They all describe some aspect of business risk associated with the use of technology. That's why one of the RSA Charge tracks I'm most excited about this year is called "Managing Technology Risk in Your Business". This track will focus on those unique challenges that emerge where the business and technology risk environments intersect (and occasionally collide).

 

The customer submissions for this year's sessions are once again truly outstanding! Customer presenters from all over the globe will be onsite to speak on a variety of topics such as assessing risk on specific technology assets, normalizing risk and compliance reporting, addressing the human element of technology risk, and much more. It's so incredible how many inspiring stories and ideas our customer community has to share. Whether you're a seasoned pro or just beginning your GRC journey and looking for the basics, you won't be disappointed. RSA Charge has something for everyone, from executive roundtables to operational hands-on labs and demos. Plus, nearly every session is customer-led! What a truly awesome community!!!

 

Did you know that companies with mature risk management programs are measurably more profitable? RSA Charge being the largest GRC gathering on the planet is a great place to start learning how! If you haven't registered already, I highly encourage you to get on it before it's too late! The full schedule can be viewed here, and the registration page here. Several resources have also been uploaded on the RSA Charge website to assist with trip planning, etc. Need help justifying the cost? No problem! Several resources are available including an ROI calculator and more. Look forward to seein ya'll in Dallas real soon!

 

RSA Charge 2017, the premier event on RSA® Business-Driven Security™ solutions, unites an elite community of customers, partners and industry experts dedicated to tackling the most pressing issues across cybersecurity and business risk management. Through a powerful combination of keynote speeches, break-out sessions and hands-on demos, you’ll discover how to implement a Business-Driven Security strategy to help your organization thrive in an increasingly uncertain, high-risk world. Join us October 17-19 at the Hilton Anatole in Dallas, Texas.

This year’s RSA Charge event is definitely one not to miss. If you have not yet registered please do so today to secure the Discount Rate of $745, saving you $200 through September 15. Registration on the RSA Charge 2017 website couldn’t be easier.

 

Still on the fence? Check out the Full Agenda with over 90 sessions, 35 hands-on labs, and 140+ thought leader industry experts you’ll agree this is the premier event on RSA Business-Driven Security™ solutions. You can also take this opportunity to build your own personal business-driven security experience for Charge.

 

Looking for another way to save on your RSA Charge registration fee? Register for one of the RSA University’s pre-Charge courses being offered at discounted course rates, and enjoy the Early Bird Discount registration fee of only $645, good until the official start of Charge on Oct. 17. But don’t wait too long; class size is limited and filling up fast. Click here to see the Pre-Charge Course Schedule and to receive a special discount code.

 

Another way to save: Friends with Benefits! They say sharing is caring, so ‘already registered’ RSA Charge attendees can now share the love by forwarding this code to a peer or colleague and he/she will receive $100 off the current $745 registration fee by using this code from you: FRIENDS17

 

And, finally, in case there are still some doubters amongst you, watch these two RSA Charge videos – you’ll be convinced that RSA Charge 2017 is the place to be seen and heard, Oct. 17-19 @ Hilton Hotel Anatole, Dallas. See you soon!

 

RSA President Rohit Ghai 

RSA Archer Vice President David Walter

 

RSA Charge 2017, the premier event on RSA® Business-Driven Security™ solutions, unites an elite community of customers, partners and industry experts dedicated to tackling the most pressing issues across cybersecurity and business risk management. Through a powerful combination of keynote speeches, break-out sessions and hands-on demos, you’ll discover how to implement a Business-Driven Security strategy to help your organization thrive in an increasingly uncertain, high-risk world. Join us October 17 – 19 at the Hilton Anatole in Dallas, Texas.

 

I grew up in England. So to me, my inner perception of Texas was always intertwined with that of America itself. Sort of like America, only more so. Having lived in the USA for 11 years, that has obviously changed and with 10 years in Kansas City I no longer look to the Lone Star State for tips on barbecue! As I think about heading down to RSA Charge in Dallas, my culinary questions run instead to whether the arrival of In-N-Out has displaced Whataburger in the Texan psyche. And conducting a risk assessment on exactly how many Texas-shaped waffles can be safely consumed at breakfast.


Of course, with all the training classes, refreshments, receptions and an awesome evening social at The Rustic planned, I’m starting to think that finding time to resolve such questions is going to be as hard as picking which sessions, keynotes and labs to attend. For my part, I’ve been watching the RSA Archer Suite Advanced Technical track take shape over the summer and I’m really excited to tell you about it. It’s so cool that we have an agenda that is heavy on customer-led sessions. I know you love hearing the hints and tricks our engineers have to share, and we won’t disappoint you this year with sessions on the capabilities of Search and Data Feeds that you might not know about. But I really love seeing what you have been able to do with Archer’s deepest powers too. Want to hear about integrating Archer with Tableau or using handheld devices as a collection point? We’ve got that covered, and much more – the full track agenda is now live. If you are an Archer Admin, or if you are going to become one, you’ll want to hear these sessions, and a registration for Charge will get you there. (Hot tip: that registration fee is still discounted through September 15th).


This year’s RSA Charge represents a personal milestone: my fifth year attending. This event is one of the absolute highlights of the year for me. I love how every year there are new faces - people early in their Archer journeys, eager to learn - alongside familiar faces, back year after year, eager to share their advice and experience. That sense of camaraderie and shared endeavour is what makes Archer what it is: a product, an industry, a community. And there’s no better place to get plugged into that spirit (or re-connected, if you’ve been doing this for a while) than at this year’s RSA Charge, October 17-19 at the Hilton Anatole in Dallas, TX.

RSA Charge 2017, the premier event on RSA® Business-Driven Security™ solutions, unites an elite community of customers, partners and industry experts dedicated to tackling the most pressing issues across cybersecurity and business risk management. Through a powerful combination of keynote speeches, break-out sessions and hands-on demos, you’ll discover how to implement a Business-Driven Security strategy to help your organization thrive in an increasingly uncertain, high-risk world. Join us October 17 – 19 at the Hilton Anatole in Dallas, Texas.

Filter Blog

By date: By tag: