Skip navigation
All Places > Products > RSA Archer Suite > Blog > 2019 > November

What is DevSecOps and why is it so important? With the transformation to a DevOps model, companies need a way to introduce security into the picture. It’s not just about development and operations anymore. In the past, security was addressed in the final stages of development. In doing so, it became a bottleneck in the process stretching out the development cycle much longer than needed. With a DevOps model, companies are developing much more rapidly and have more frequent development cycles, and incorporating security early and frequently. Security is no longer an afterthought.


IT and security teams require tools to help document and track the security of products and remediation. On Nov. 19, we introduced the RSA Archer Product Security Development Assessment app-pack, our first RSA Exchange offering for the journey of DevSecOps. With IT Security Risk Managers and Product Security teams as its primary audience, this app-pack provides a consistent and repeatable process to identify security concerns early in the DevOps process and minimize the impacts of security risks prior to deployment.


RSA Archer Product Security Development Assessment allows you to:

  • Document product initiatives during the development lifecycle
  • Manage and track threat model information
  • Identify risks and mitigation strategies associated with security concerns during threat modeling
  • Track results and approvals for security testing and third-party libraries


Interested in learning more about the RSA Archer Product Security Development Assessment app-pack? Join us for a Free Friday Tech Huddle on Friday, Nov. 22 for a live demo. Free Friday Tech Huddles are only available to RSA Archer customers. If you are not yet a customer but you are interested in learning more, please contact your local representative or authorized reseller — or visit us at


RSA Archer Product Security Development Assessment

Initiative Leader Dashboard


RSA Archer Product Security Development Assessment

Security Manager Dashboard

With today's launch of RSA Exchange Release R10, we are excited to share new offerings to help you navigate an integrated risk management (IRM) journey that's right for you.  In this release, the RSA Exchange is starting the journey into DevSecOps with the introduction of the RSA Archer Product Security Development Assessment app-pack. While it's important to put security into the design of your offerings, it's also important to track the risks that are identified in security testing to ensure the appropriate mitigation plans are in place and implemented. We would appreciate your feedback on this first offering in DevSecOps to help guide us with future offerings to support your journey.


RSA Exchange Release R10 also introduces a new offering from our partner HCL, which is designed to manage regulatory interactions. In addition, we have three integrations for asset discovery and updates to existing tools & utilities and content.


Here is a full list of the new and updated offerings available in Release R10:



  • Tools & Utilities – pre-built functions enabling administrators to more easily manage RSA Archer implementations




To learn more about each of these new and updated offerings, start by reviewing the Product Advisory. Also, please join me on Friday, November 22 for a Free Friday Tech Huddle for an overview of the RSA Exchange Release R10 offerings and a brief demo of the RSA Archer Product Security Development Assessment app-pack.


And last, but not least, there is a wealth of documentation, downloads, and more on the RSA Exchange on RSA Link.  I recommend that you bookmark the listing of all RSA Exchange offerings. And if you have new ideas for the RSA Exchange, please submit them on RSA Ideas

For a long time, we have received your feedback, “RSA Archer provides a fantastic set of features, but if only it had equally compelling User Interface…”


Well, the wait is over! With RSA Archer v6.7, we just delivered the first batch of many of the UI improvements we have planned for delivery in upcoming releases. We are excited about how new UI appearance and user interaction has turned out. And we want you to be equally excited, when you get to try it out!


So, what has improved?


Global Header, Navigation Menu and Environment Bar

We have replaced complex, monolithic, counterintuitive, access all-features-at-once Mega Menu with modern, responsive and easy to navigate Global Header and Navigation Menu. The simple yet efficient navigation will speed up the learning curve for new users and eliminate the fatigue of experienced users having to click through many places for frequent, repetitive activities. 


Re-organization of frequently used features that existed in Mega Menu plus addition of other frequently used features  such as Type ahead global search, recent activities, assigned tasks, Back office (administration) pages, contextual search, User Preferences, Home page, Workspaces, Flexible Workspace Management control as well as Master report list greatly improves ease of access from anywhere in RSA Archer with a single click.


In addition, ability to customize the background and text of the new Environment bar (located above the Global Header) will help you easily identify the environment you are working on and eliminate the mistakes of doing edits in the wrong environment.


Global Header and Nav Menu


Landing page iView for first line of Defense user

While we love RSA Archer for what it has to offer, navigating RSA Archer for a new user was a daunting experience. To tackle the problem, we have added a new "Landing page iView" type so that you can create a default landing page with links to frequently used features for the first line of defense users. You will also have opportunity to improve/customize the appearance with choice of adding an image as background to the iView.


First Line of Defense User Landing Page


Appearance and Record page updates

We have modified the appearance of the User Interface. Rather than you trying to set primary and secondary options and hope for color algorithm to churn out the right color combination (which rarely happened), now you have direct control over selecting the colors of your choice and modifying the appearance.


The User Interface uses the system defined neutral, high-contrast color scheme to display the content while allowing you to control the color selection for prominent locations in UI such as Nav Menu, Footer and Environment bar as well as the branding logo in Global Header and the background image in Landing page iView. For more insight on this topic, please visit our other blog.


We also updated the Record page header to give it a modern, clean appearance and improve visibility to frequently used functions. For the records associated with application that uses the Advance Workflow (AWF), the record header also optionally displays a progress tracker aka Workflow tracker.



Dashboard and iView improvements

Along with other UI changes, we also made number of changes to Dashboard and iView such as the layout of components, color, font size, padding and other related modifications including addition of Quicklink bar.


Dashboard and iViews improvements


For the demo and better insight to the Global Header, Navigation Menu, Record page header, Appearance, First line of defense landing page, Dashboard and iView improvements, please attend this week’s Free Friday Tech Huddle . We look forward to your attendance!

Filter Blog

By date: By tag: