RSA Archer GRC

Posted: 15th April 2022
RSA Archer GRC

Product Overview

Archer Third Party Governance (GRC) enables analysts to automate and streamline oversight of vendor relationships, get an accurate picture of third-party risk factors, and prioritize them according to importance. Additionally, analysts can facilitate key activities necessary to fulfill regulatory obligations and achieve best practices across the entire third-party management lifecycle.

Reduce third-party risk with Recorded Future; the industry’s only threat-centric risk intelligence solution powered by patented machine learning and artificial intelligence. Recorded Future delivers context in real-time so intelligence stays relevant and integrates seamlessly with RSA Archer GRC to enhance third-party risk management.

Challenges Overcome Through Integration


As organizations evolve and embrace new technologies and processes to become more connected, collaborative, efficient, innovative, and competitive, their reliance on third-party ecosystems increases. Digital connections with suppliers, partners, contractors, agents, temporary workers, and others are now so critical that organizations share confidential and sensitive information with hundreds of third parties on average. While these relationships undoubtedly add business value, they also introduce significant new risk and compliance challenges.

Recorded Future for RSA Archer GRC enables analysts to calculate risk on third-party profiles and assessments, widen visibility and risks associated with vendors increasing contextual awareness. The Recorded Future data integrated into RSA Archer GRC includes:

  • Risk Score
  • Risk Rules
  • Evidence Details
  • Referenced Vendor Card
By harnessing Recorded Future’s rich intelligence in RSA Archer GRC, teams can improve efficiency, resolve incidents faster, and make more confident decisions.

Integration Description

As part of their cyber third-party risk management strategies, many organizations rely on GRC and Third-Party Risk Management technology to consolidate risk information from internal sources (such as finance, IT, and operations) and external sources to understand their third-party risk landscape. Yet, as third-party ecosystems grow in size and complexity, risk management teams increasingly struggle to procure and maintain high-quality, real-time external data to feed their third-party risk management workflows and technology.

The joint integration allows analysts to:

  • Detect risk and gain context on third-party supplies with real-time external intelligence
  • Increase risk management team efficiency with data critical to determine potential risk associated with a vendor or supplier
  • Faster onboarding assessments and risk remediation by reducing investigation time to easily prioritize efforts.
Real-time continuous monitoring includes credential leaks and company mentions on the dark web. Figures below illustrate how Recorded Future data is leveraged for context and evidence related to a vender card. Allowing analysts to make a better determination of the risk associated with vendors in the environment.