Skip navigation
All Places > Products > RSA Archer Suite > Blog > Author: Susan Jessee

RSA Archer Suite

11 Posts authored by: Susan Jessee Employee

Today, we’re pleased to announce availability of Archer Exchange offerings for November 2020. This release marks the successful completion of our first continuous release cycle for the Archer Exchange. And there are more great offerings to come!


This latest Exchange release primarily includes updates to a number of existing offerings, but also includes a few new offerings:


  • App-Packs– pre-built applications addressing adjacent or supporting Integrated Risk Management processes (e.g. niche, industry, geo-specific)


  • Tools pre-built functions enabling administrators to more easily manage their Archer implementations
    • Archer Advanced Workflow Content Assistant helps organizations change the Advanced Workflow business flow for an application and has been updated to support Archer Release 6.9.
    • Archer Data Feed Monitor enables an Archer Administrator to call a data feed when there is work to do. It has been updated to encrypt the Config file upon initial execution.
    • NTT Platform Monitoring and Operations enables organizations to monitor the health of their Archer environment and proactively identify issues that may impact system integrity or availability.  


  • Integrations- pre-built data exchange configurations bringing data into and pushing data out of the Archer Platform
    • LexisNexis data feeds and JavaScript file have been updated to improve performance and ingest Historical Notes content.
    • RiskLens Gen 3 has been updated with new JavaScript code to address validation errors when executing data feeds. RiskLens Gen 3 integrates with the following use cases:
      • Archer IT Risk Management
      • Archer Operational Risk Management
      • Archer Top-Down Risk Assessment
      • Archer Information Security Management System (ISMS)
    • RiskRecon Third Party Security Risk Monitoring has been updated to improve performance, provide filtering by issue severity at the API endpoint, and enhanced error handling for data feeds. RiskRecon Third Party Security Risk Monitoring integrates with the following use cases:
      • Archer Third Party Catalog
      • Archer Third Party Engagement
      • Archer Issues Management
    • SecurityScorecard integrates with the Archer Third Party Catalog use case and has been updated with new JavaScript code to improve integration performance.
    • SirionLabs Contract Lifecycle Management (CLM) is a new integration for the Archer Third Party Catalog use case and enables organizations to manage their engagements throughout the complete lifecycle of a contract.
    • Thomson Reuters Regulatory Intelligence integrates with the Archer Corporate Obligations Management use case and has been updated with new JavaScript code to address validation errors when executing data feeds.
    • Veracode integrates with the Archer Third Party Catalog use case and has been updated to accommodate the new Veracode APIs. 


Today, we’re pleased to announce availability of RSA Archer Release 6.9, delivering new features and enhancements to streamline access to key data and provide a cohesive, actionable view of risk and compliance at all levels of your organization. This release introduces new and updated RSA Archer Platform features designed to provide a more intuitive user experience, efficient search and reporting, and easier administration.


In addition to Platform updates, Release 6.9 includes updates to several RSA Archer use cases. Enhancements to the RSA Archer Controls Assurance Program Management and RSA Archer IT Controls Assurance use cases help you quickly set up evidence collection and ensure that evidence of the control is captured on an ongoing basis, all in one location. Bringing RSA Archer closer to delivering near real-time evidence collection, these updates allow you to easily designate which controls you want evidence collected for and whether you want automated or manual collection. Dashboards have been added to enable the evidence collection process to be more readily monitored and to help provide users with a better understanding of overdue evidence requests, evidences currently due, and those pending approval.


Release 6.9 also includes updates to the RSA Archer Cyber Risk Quantification use case, leveraging the RiskLens Generation 3 platform to provide an improved data model for analyzing risks and a more streamlined data interchange between RSA Archer and RiskLens environments. And on the heels of last month’s announcement of our new Vendor Portal functionality, Release 6.9 updates to the RSA Archer Third Party Risk Management use case include added fields to connect the Engagement Risk Assessments questionnaire with Vendor Portal.


We invite you to attend the Free Friday Tech Huddles this Friday, Aug. 28 and Friday, Sept. 11 for demonstrations of RSA Archer Release 6.9 features. (Available only to RSA Archer customers. Pre-registration is required.) For more information about this release, please visit the RSA Archer Release 6.9 subspace on RSA Link.

In uncertain times, integrated risk management plays an even more significant role in organizations’ growth strategies. Likewise, responsibility and roles in risk management continue to extend well beyond those traditionally relegated to risk managers. Digital transformation has accelerated this transition, with a greater need for executives to have real-time visibility to risk information that helps drive critical business decisions.


In keeping with our vision to “Inspire Everyone to Own Risk,” RSA Archer Release 6.8 continues the evolution of the RSA Archer user experience. This release delivers new features and enhancements designed to streamline access to key data and provide a cohesive, actionable view of risk and compliance at all levels of an organization.


User experience enhancements in Release 6.8 include several updates to record and report headers, for greater consistency and easier access to key functions. Updated navigation options provide more usable space on-screen and enable users to easily view and edit recent records. Release 6.8 also includes a number of enhancements to improve search and reporting functions. Users can set a numerical limit or percentage for returned search records for regular, non-statistical searches, and date-based filters can be created without the need to navigate away from the page.


Administration enhancements in Release 6.8 include a new user interface for Data Gateway that supports the configuration of connectors to external systems and provides real-time visibility into external data sets. We’ve also introduced native SAML 2.0 support for single sign-on (SSO). This new SSO mode allows RSA Archer to natively process responses from any identity provider that supports SAML 2.0, as well as create and authenticate RSA Archer users directly based on their SAML identity. In addition, new Job Monitor capabilities in this release for RSA Archer SaaS and on-premises environments allow authorized users and administrators to view, sort, group, and filter information about data feed jobs.


We’ve also introduced the RSA Archer Financial Controls Monitoring use case, which replaces the Controls Monitoring Program Management use case. The Financial Controls Monitoring use case includes new applications, questionnaires, roles, and dashboards to assess and report on the performance of financial controls across all enterprise asset levels. These and other enhancements enable management of multiple financial compliance projects as required by the Sarbanes-Oxley Act (SOX) or similar financial regulations, as well as associated functions such as Provided By Client (PBC) lists, process narratives, and operating tests.


These are just some of the highlights of RSA Archer Release 6.8. You can get more information on the Release 6.8 subspace on RSA Link, and we invite customers to join us for upcoming Free Friday Tech Huddles for demonstrations and details of these and other features.

You’ve given us your input and shared your feedback on features and functionality. You’ve seen updates in customer product roadmap sessions. You’ve seen exciting sneak peeks at RSA Charge 2019. And today, it’s here – RSA Archer Release 6.7 is now available!


RSA Archer Release 6.7 delivers enhancements designed to modernize and simplify the user experience with the RSA Archer Suite, in support of the growing importance of a cohesive view of risk and compliance at all levels of an organization. This release is the next step in the evolution of the RSA Archer user experience, with cleaner, easier-to-use dashboards and more direct, intuitive navigation.


Updates in Release 6.7 provide improved usability and easier accessibility to key data. Improvements to the user interface allow business users to more quickly access the data they need and more easily interpret the data. Dashboard updates enable easier navigation, with a new Quick Links bar and links to frequently accessed user actions and dashboard options that remain at the top of the page when scrolling. A new “first line of defense” iView provides business users with a clean, simple dashboard and clear access to common tasks and reports. Reporting enhancements in Release 6.7 provide added graphical context for key data, more interactive functionality, and more chart type options.


RSA Archer Release 6.7 dashboard


For RSA Archer administrators, this release includes a number of updates to extend functionality and performance, including updates to the Data Gateway feature of the RSA Archer Platform. Introduced in Release 6.4, the Data Gateway allows organizations with large data sets in external systems to connect to RSA Archer. In Release 6.7, updates enable administrators to configure the Data Gateway without the need for professional services. The Data Gateway RESTful API provides commands to add, update, and delete Data Gateway connections, content mapping, and field mapping, and new documentation provides instruction for coding a Data Gateway connector. Other new administration features in Release 6.7 include automated deployment of packaging, secure connection for FTP data feeds, proxy bypass, and much more.


In addition to enhancements to the RSA Archer Platform, Release 6.7 includes updates for a number of RSA Archer use cases for Public Sector, Enterprise & Operational Risk Management, IT & Security Risk Management, and Third Party Governance.


To learn more about RSA Archer Release 6.7, please review details in the Product Advisory. RSA Archer customers are invited to join us for a Free Friday Tech Huddle on Nov. 1 (pre-registration is required). We'll have more Free Friday Tech Huddles over the next few months to take deeper dives into Release 6.7 features. You can also check out Release 6.7 documentation available on the RSA Archer Release 6.7 subspace on RSA Link.

RSA is pleased to announce that – once again -- Dell Technologies (RSA) has been named a Leader in the 2019 Gartner Magic Quadrant (MQ) for Business Continuity Management Program (BCMP) Solutions!


This comes on the heels of Leader designations for Dell Technologies (RSA) in the 2019 Gartner Magic Quadrant for Integrated Risk Management Solutions and the 2019 Gartner Magic Quadrant for IT Risk Management Solutions – making RSA the only vendor to be positioned as a Leader in all three of these Magic Quadrants!


RSA Named A Leader in 2019 Gartner Magic Quadrant for Business Continuity Management Program Solutions, Worldwide


In the BCMP Magic Quadrant report, Gartner states that “organizations need a consistent and repeatable process for all aspects of BCMP development and execution. With the growing focus on resilience in day-to-day business operations — rather than on out-of-band response and recovery activities only — BCMPs need to demonstrate maturity, status and effectiveness on an ongoing basis, not just once a year.” RSA Archer use cases for Business Resiliency bring together incident response; business impact analysis; recovery planning, testing and activation; and crisis management – all critical components of a program positioned to build resiliency throughout the organization.


Gartner also states that “the critical capabilities of BCMP solutions center on providing business leaders with a more effective means of evaluating operational risks and business impacts, as well as planning for, responding to, recovering from and restoring after a business disruption.” The RSA Archer Business Resiliency solution integrates with operational risk management, security and third-party risk use cases to dramatically improve coordination, alignment, and visibility across these often-separate functions.


Finally, Gartner defines “optimal BCMP solutions as holistic, addressing the following critical capabilities: ease of use and configuration; dashboarding and reporting; and BCM tool integration.” RSA Archer offers out-of-the box capabilities that are highly configurable, along with best-in-class dashboarding and reporting. The RSA Archer Business Continuity & IT Disaster Recovery Planning and RSA Archer Crisis Management use cases are integrated with emergency mass notification and mobile partners, to put RSA Archer in the hands of people on the move during a disaster.


We sincerely thank our customers for sharing their valuable insights and experiences working with RSA Archer Suite with Gartner. Our community of active and enthusiastic users continue to be a driving force behind what we do, and we thank you.




Figure 1. This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Dell RSA.


*Gartner, Magic Quadrant for Business Continuity Management Program Solutions, David Gregory, Roberta Witty, 12 September 2019


Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, express or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

I am happy to share that for the fourth time, RSA has been positioned as a Leader in the just-published Gartner Magic Quadrant (MQ) for IT Risk Management (ITRM) Solutions


The field for this year’s Gartner MQ for ITRM is comprised of ten vendors. Based on Gartner analysts’ evaluation of RSA Archer Release 6.5, which included an in-depth questionnaire, product demonstration, and interviews with RSA Archer customers, Dell Technologies / RSA was positioned highest in "Ability to Execute.”



We would like to sincerely thank our customers for sharing with Gartner their valuable insights and experiences using RSA Archer solutions. Our customers and community of users are truly what continues to make RSA Archer great!


The Garter MQ for ITRM is the first of four Gartner MQs this year that will include RSA Archer, including MQ reports for Integrated Risk Management and Business Continuity Management Planning in the coming months, as well as IT Vendor Risk Management Tools later this year.


If you are just beginning to explore IT risk management, or if you are already managing a successful integrated risk management program, we encourage you to read the full report.


This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from Dell Technologies.

Available beginning today, RSA Archer Release 6.6 represents our next step forward in creating a next-generation user experience that brings the power of RSA Archer to an evolving user base, where they are, with the context they need, and in the format they want.


With this release, we’ve focused on continuing to elevate the user experience with RSA Archer, with user interface, usability, and accessibility updates that support the growing scope and importance of risk and compliance at all levels of our customers’ organizations. Release 6.6 includes a number of improvements to key features of the main navigation, dashboards, and records pages for a more modern look and feel and enhanced functionality.


Other enhancements to the RSA Archer Platform include search and reporting improvements for easier and faster analysis. A new “Refine By” pane on the search results page – similar to what you would see in the left column on -- makes it easy to slice and dice initial search results by clicking attributes to filter the results without leaving the results page. Users can also add, remove, and reorder display fields directly from the search results page, for more efficient modifications to search results. To enable faster navigation and search, Global Search now provides search suggestions that appear in real-time as text is entered to enable faster navigation, and prioritizes content that matches the Key Field, Tracking ID, or both.


Release 6.6 includes workflow management enhancements for greater efficiency, including while on the move. As one of the customer-voted “Top 10” features on RSA Ideas, the new Advanced Workflow Actions by Email capability enables users to quickly and easily complete workflow actions, such as approving or rejecting a record, via email without the need to log in to RSA Archer. The release also includes performance improvements to optimize management of data at scale, support for an Application Managed Output Writer for JavaScript Transporter to enable more data in a single data feed, and removal of inactive jobs to reduce the job engine load.


RSA Archer Release 6.6 also includes updates for several use cases:

  • RSA Archer Key Indicator Management use case updates enable past due active metrics or metrics that do not have recorded results to be automatically enrolled into workflow. Metric owners are notified that action is required and can then determine the appropriate remediation actions for the metric.
  • RSA Archer Corporate Obligations Management and RSA Archer IT Regulatory Management use cases have been updated to remove pre-configured data feeds from the use case package, allowing customers to customize configuration based on their regulatory requirements. Data feeds are now available from the RSA Exchange on RSA Link.
  • RSA Archer Enterprise Catalog is a new package designed to simplify the process of updating releases by aggregating shared applications across multiple use cases.


Last, but certainly not least, for our global customers, RSA Archer Release 6.6 includes localization for the eight languages supported by RSA Archer. We’re very pleased to be able to provide localization with general availability for the first time with RSA Archer Release 6.6. Customers can immediately download RSA Archer in their language of preference, and translated documentation is also available.


For more details on RSA Archer Release 6.6 features and functionality, RSA Archer customers can review the product advisory. Customers are invited to join us for a Free Friday Tech Huddle on Friday, May 3. You can also read the blog series and check out the documentation available on the RSA Archer Release 6.6 subspace on RSA Link.


If you haven’t yet upgraded to 6.x to take advantage of these and other great features, please reach out to your account representative. You don’t know how much you’re missing!


Stay tuned for even more great things coming soon for the RSA Archer Suite.

Today, we’re pleased to announce availability of RSA Exchange Release R7, which introduces 10 new and two updated offerings, as well as new and updated content. We're thrilled that our RSA Exchange Technology Partners continue to develop and deliver innovation for RSA Archer customers via the RSA Exchange, and look forward to much more in future releases.


  • App-Packs – pre-built applications addressing adjacent or supporting Integrated Risk Management processes (e.g. niche, industry, geo-specific)
    • Aujas Duplicate Findings Prevention avoids duplicate open findings for periodic assessments, reducing stakeholder overhead in managing duplicate findings
    • RSA Archer Due Diligence Management provides consistent due diligence scoping process, checklist, and recommendations that address multiple due diligence business processes such as mergers and acquisitions
    • RSA Archer FFIEC-Aligned Cybersecurity Framework offers the ability to apply the best practice principles from FFIEC to prioritize and scope business objectives and priorities, create risk profiles, risk assess the environment, analyze the results to identify gaps, and implement an action plan
    • RSA Archer Speak Up, introduced in November 2018, has been updated to enable anonymous whistleblower submissions.





For additional documentation, downloads, and alisting of all RSA Exchange offerings, check out theRSA Exchange for RSA Archer on RSA Link. Stay tuned for more new RSA Exchange offerings next quarter!

With today’s launch of RSA Exchange Release R6, we're very excited to deliver two new integrations in support of our mobility strategy. As we previewed at RSA Archer Summit 2018 in August:

  • A new integration with Mendix enables customers to access the RSA Archer Platform via a variety of supported mobile devices both on iOS and Android. Customers can customize their Mendix-based apps to suit their specific user experience and business requirements and interact with the RSA Archer Suite using the RSA Archer public APIs.
  • A new integration with KONEXUS provides an intuitive mobile solution that integrates with RSA Archer Business Resiliency use cases. The integration streamlines crisis response and transforms business continuity and crisis management plans into actionable, role-based, task lists that put critical information in the hands of users via their mobile devices.  


RSA Exchange Release R6 also includes integrations with, erwin, Rapid Ratings, SoftWarfare, ThreatConnect, and ThreatQuotient. as well as the following offerings:


  • App-Packs – pre-built applications addressing adjacent or supporting GRC processes (e.g. niche, industry, geo-specific)


    • Tools & Utilities - pre-built functions enabling administrators to more easily manage their RSA Archer implementations



    RSA Exchange Release R6 also includes updated content for Australian Government Information Security Manual (ISM) to include Controls. Content library packages are available on the RSA Exchange Documentation & Downloads subspace.


    All RSA Exchange offerings are available on RSA Link, along with implementation guides, demo videos, and installation guides where available. For existing RSA Archer customers, you can learn more about these new and updated offerings in upcoming Free Friday Tech Huddles.

    In the wintery cold of February, the summer heat of August seems like a distant dream. But planning for RSA Archer Summit 2018, Aug. 15-17 in Nashville, Tennessee, is already in full swing.


    And we need YOU!


    RSA Archer Summit 2018 Call for Speakers


    The key to the success of the RSA Archer Summit has always been the active participation of our customers as presenters and panelists. Customer presenters offer a view into the work of GRC thought leaders -- people who are pushing the boundaries of what’s possible with RSA Archer and developing powerful use cases within their organizations and industries.


    Are you ready to inspire others? Send us your speaker submission today!


    Need a speaker submission form? Download it here.


    Have questions? Please contact


    Hurry! Don’t miss out. Plan ahead for summer and send us your speaker submission for RSA Archer Summit 2018 today. The March 30, 2018 submission deadline is just around the corner. And the RSA Archer Summit will be here before you know it!

    Calling all RSA Archer customers!! RSA Charge 2017 (Dallas, TX, Oct. 17-19, 2017) will be here before you know it -- and NOW is the time to submit your nomination for the RSA Archer Awards.


    This year, we will once again honor organizations that are implementing RSA Archer governance, risk, and compliance (GRC) solutions in innovative ways. The awards recognize customers that are building cutting-edge use cases and integrations using RSA Archer to support process automation, collaboration and reporting.


    This year’s awards categories include:

    • Innovation Award
    • Return on Investment Award
    • Community Advocate Award
    • Excellence Awards


    We invite and encourage all RSA Archer customers to submit an award nomination for their organization in any of these award categories. Simply download and complete the nomination form and tell us about your organization's approach to solving GRC challenges. Then email your completed nomination form to The deadline is Monday, July 24, 2017!


    If you have any questions regarding your submission, please contact your field sales and/or existing accounts manager.


    We look forward to receiving your submissions. And good luck to all!

    Filter Blog

    By date: By tag: