Policy Management

Centrally manage policies, map them to objectives and guidelines, and promote awareness to support a culture of corporate governance.

RSA Archer Policy Management provides the foundation for a best-in-class governance, risk and compliance program with a comprehensive and consistent process for managing the lifecycle of corporate policies and their exceptions. The solution offers a centralized infrastructure for creating policies, standards and control procedures and mapping them to corporate objectives, regulations, industry guidelines and best practices. It allows you to communicate policies across your enterprise, track acceptance, assess comprehension and manage exceptions. Powered by the RSA Archer eGRC Platform, the Policy Management software solution gives you a meaningful understanding of what governs your business, and it enables you to formulate policies appropriately to aid in achieving corporate objectives and demonstrating regulatory compliance.

  • Centralize and Normalize Your Policies

    Centralize your existing policies, standards and control procedures, establishing the foundation for risk monitoring and compliance measurement activities. Also take advantage of the pre-loaded RSA Archer eGRC Content Library, which provides best-practice policies, control standards, control procedures, authoritative sources and assessment questions.

  • Rationalize Your Policies and Control Standards

    Map policies and standards to your corporate objectives and authoritative sources, such PCI, ISO/IEC, COBIT, FFIEC, HIPAA, NIST and privacy legislation. Also add objectives and sources over time as your business evolves and new regulations, best practices and internal requirements emerge.

  • Communicate Policies, Track Acceptance and Assess Comprehension

    Communicate policies through dashboards, prompts at login, and email notifications that are relevant to specific roles, departments and business functions. Also promote policy comprehension and attestation through targeted Training and Awareness campaigns, and report results to senior management and regulators.

  • Manage Policy Exceptions

    Initiate and manage requests for policy exceptions automatically using built-in workflow and alert notifications. Also report on exceptions across the enterprise, monitoring them by control, department, severity or other meaningful criteria.

  • Support Enterprise Compliance Initiatives

    Issue questions from the RSA Archer eGRC Content Library within the RSA Archer Risk Management, Vendor Management and Compliance Management solutions to deliver targeted, online assessment campaigns that map to internal controls and external requirements.

  • Report on Your Policy Management Program

    Use real-time reports and dashboards to display policies and control standards mapped to specific regulatory requirements, identify gaps between your policies and the authoritative sources that govern your business, and monitor policy exceptions enterprise-wide.

  • Information and Process Centralization

    The ability to author policy content, communicate it to end users, conduct training campaigns and view exceptions all from a single web portal

  • Time and Cost Savings

    Reduction in the time and effort required to create and update policies, manage exceptions and demonstrate compliance with multiple regulations

  • Significant Efficiencies

    Dynamic, flexible workflows that allow you to distribute content to appropriate subject-matter experts for review and approval

  • Greater Visibility

    The ability to map your policy content to the RSA Archer control framework and easily see gaps when new authoritative sources are rolled out

  • Quick Time to Value

    Rapid return on your investment from a solution that you can implement out of the box (using predefined access roles, workflow, reports, dashboards, etc.) or easily tailor to your needs through point-and-click configuration

  • Deployment Flexibility

    The freedom to choose an on-premise or software as a service (SaaS) deployment and to move the solution from one environment to another as your needs change

  • Policy Management Video Demo

    See RSA Archer Policy Management in action in this short video demonstration.

  • Policy Management Data Sheet

    Get more details on the RSA Archer Policy Management solution—the foundation of your enterprise governance, risk and compliance program.

  • eGRC Webcasts

    Take a deep-dive tour of RSA Archer eGRC Solutions through our weekly webcasts. Participate live or request a recording to view at your convenience.

  • Case Studies

    Learn why RSA Archer eGRC clients have been so successful in solving enterprise governance, risk and compliance challenges.

  • White Paper

    Learn about Archer’s platform approach to enterprise governance, risk and compliance.

  • Live Chat

    Chat live with an RSA Archer eGRC representative to get more information or to set up a private demo of the Policy Management solution.