Risk Management
Identify risks to your business, evaluate them through online assessments and metrics, and respond with remediation or acceptance.
RSA Archer Risk Management enables you to proactively address reputational, financial, operational and IT risks against your corporate objectives. This web-based solution delivers a central management system for identifying risks, evaluating their likelihood and impact, relating them to mitigating controls and tracking their resolution. RSA Archer Risk Management allows you to manage a comprehensive Risk program enabled by a central risk repository with project management capabilities, key risk indicators and loss events. You can also leverage pre-built risk assessments or create your own to deliver targeted risk assessments to evaluate identified risks within your environment. Management of risk treatment processes is built in allowing you to manage the full lifecycle of risk management.
-
Identify and Monitor Potential Risks
Build a registry of potential risks, documenting their source and nature, impacted business units and stakeholders, and related corporate objectives, key risk indicators and mitigating controls. Also maintain a repository of qualitative, quantitative and trending metrics, and relate those metrics to potential risks. Additionally, automate the collection of data to support your metrics, and monitor trends in that data. -
Manage Projects as Part of Your Risk Program
Track and catalog operational risk through project management and risk assessment activities. In addition to maintaining a central repository of risk-related projects, you can assign staff, collaborate on risk assessments, manage staffing, and report on the status of your risk program. -
Track Financial Losses as Risk Intelligence
Document loss events that represent actual risk to your business, capturing event impact, Basel II category, detection source, control factors, root cause analyses and remedial activities to prevent future occurrences. Also relate loss events to statements of potential risk in the Risk Register to quantify the likelihood and impact of risks. -
Employ a Master Library of Assessment Questions
Use pre-loaded risk assessment questions, all of which are mapped to authoritative sources, control standards and control procedures within the RSA Archer eGRC Content Library—enabling powerful risk and compliance reporting. Also import your own questions and assign correct answers, numeric score values, weighting and other attributes. -
Deliver Targeted Risk Assessments
Take advantage of pre-loaded questionnaires for quarterly risk reviews, and risk assessments against your business units, business processes, information assets, facilities, devices and applications. Also build new questionnaires within minutes, and define rules to show or hide questions based on attributes of the object, person or process the end user is assessing. Launch online risk assessment campaigns automatically, triggering emails to end users who can complete their assigned questionnaires with no prior training. -
Generate and Resolve Findings to Reduce Risk
Score assessments automatically and generate findings to reveal inherent risk of each assessment target. The system will automatically route findings to the appropriate personnel, who can mitigate them through remediation tasks or exception requests. As findings are addressed, the solution automatically calculates residual risk. -
Report on Your Organization’s Risk Profile
Gain a meaningful understanding of enterprise risk from a variety of perspectives. The solution provides predefined reports and heat maps for analyzing your risk profile, and you can easily create ad hoc reports and dashboards to provide your executive leadership and board of directors with clear visibility into key risk indicators and actual loss events.
-
Consistency and Flexibility
A standardized approach to identifying, evaluating and responding to risk with the flexibility to make overrides as necessary without custom code -
Adherence to Your Own Methodologies
The ability to model and evaluate risk in a way that makes sense for your organization using sophisticated and dynamic calculations -
Manage the Risk Management Lifecycle
Manage your risk management function from risk identification to treatment utilizing a complete lifecycle of Inherent, Residual and Operational Risk -
Holistic View of Risk Exposure
A complete view of exposure across your business gained through the relation of risks to many different objects (controls, corporate objectives, processes, facilities, technologies, etc.) -
Time and Cost Savings
The ability to transform isolated, manual processes into an integrated, automated risk management program, saving time and expense across your organization -
Rapid Return on Investment
Quick time to value from a solution that you can implement out of the box (using predefined access roles, workflow, reports, dashboards, etc.) or easily tailor to your needs through point-and-click configuration -
Deployment Flexibility
The freedom to choose an on-premise or software as a service (SaaS) deployment and to move the solution from one environment to another as your needs change
-
Risk Management Video Demo
See RSA Archer Risk Management in action in this short video demonstration. -
Risk Management Data Sheet
Get more details on the RSA Archer Risk Management solution—a centralized, automated tool for assessing and responding to risks that impact your business. -
eGRC Webcasts
Take a deep-dive tour of RSA Archer eGRC Solutions through our weekly webcasts. Participate live or request a recording to view at your convenience. -
Case Studies
Learn why RSA Archer eGRC clients have been so successful in solving enterprise governance, risk and compliance challenges. -
Live Chat
Chat live with an RSA Archer eGRC representative to get more information or to set up a private demo of the Risk Management solution.