RSA Archer Third Party Engagement

Document created by Susan Jessee Employee on Dec 3, 2015Last modified by RSA Link Admin on Sep 18, 2020
Version 17Show Document
  • View in full screen mode

Use Case for Third Party Governance




RSA Archer® Third Party Engagement allows you to catalog the products and services being delivered to your organization by third parties. It also allows you to associate product and service engagements to the business process and business units they support, giving you a holistic understanding of your dependency on each third party. You can establish accountability for engagements, perform inherent risk assessments across multiple risk categories, catalog and assess the adequacy of proof of insurance for each supplier, evaluate the financial viability of each third party, and roll up all engagement inherent risk assessments to the third party delivering the engagement. This provides you with an understanding of the overall inherent risk associated with each third-party relationship.


Key Features

  • Catalog third parties, their business hierarchy, and the product and services engagements they deliver to your organization
  • Map third party products and services to the business processes they support
  • Inherent risk assessments on engagements across seven different risk categories
  • Capture and analyze significant fourth-party relationships
  • Analysis of the financial wherewithal of each third party
  • Roll-up inherent risk assessment of each engagement provided by a third party to obtain an overall “aggregate” inherent risk profile of the third party
  • Robust notifications and reporting for greater transparency into third party relationships
  • Catalog contracts and master services agreements associated with engagements
  • Execute contract risk assessments utilizing standardized questionnaires focused on minimum required contract language to mitigate and transfer risk
  • Capture third party proof of insurance and evaluate the adequacy of the insurance relative to all engagements being delivered
  • Integrate results of your business process impact analysis into your assessment of inherent resiliency risk for each third party
  • Establish accountability for each third-party engagement
  • Track exceptions related to third party engagements
  • Reporting for third parties that present the greatest inherent risk to your organization and the business processes they support


Key Benefits

With RSA Archer Third Party Engagement enables, you can:

  • Efficiently manage your third-party risk management program and resource allocation based on the most significant priorities
  • Gain insight to where, how, and why third parties are being used throughout your organization and who is responsible for the third-party relationship
  • Identify inherently high risk third-party products, services, and relationships
  • Provide positive assurance to senior management, the Board, and regulators regarding the adequacy of your organization’s third-party governance program




For More Information

To learn more about RSA Archer Third Party Engagement:


To learn more about how RSA products, services, and solutions can help solve your business and IT challenges, contact your local representative or authorized reseller—or visit us at If you are an existing RSA Archer customer and have questions or require additional information about licensing, please contact RSA Archer at


RSA Archer Third Party Engagement use case screenshot 11-19-2019.jpg