Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk

5/31/2012
01:27 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

RSA Archer eGRC Platform Expanded

Newest release includes a Regulatory Management solution

BEDFORD, MA – May 31, 2012

News Summary:

· Enhancements and new solutions for the RSA® Archer™ eGRC Platform provide significant usability, deployment, data management, and audit improvements helping customers more efficiently and effectively manage risk, achieve compliance and improve their overall security posture.

· To help customers respond to an increasingly stringent and rapidly changing regulatory environment, new value-add solutions are now available for the RSA Archer eGRC Platform including a Regulatory Management solution to help customers speed response to changes in the regulatory environment as well as a PCI Compliance solution which helps streamline and automate compliance for PCI 2.0 requirements.

· To meet the increasingly complex needs of organizations as they mature their GRC programs, RSA has updated the RSA Archer Community and Exchange Platform with expanded resources and tools to help its nearly 9,000 members drive improvements in the RSA Archer Platform and more effectively collaborate and exchange ideas.

Full Story: RSA, The Security Division of EMC (NYSE: EMC), today announced new RSA Archer eGRC Platform and Solution enhancements designed to drive more value for customers than ever before. The new Archer eGRC Platform provides additional scalability, improved usability, and advanced reporting while new RSA Archer solutions have been developed for PCI Compliance and Regulatory Change Management.

The combination of the updated platform, core solutions and new value-add solutions will help customers more efficiently stay ahead of risk management and compliance requirements as their environments continue to grow and regulatory requirements change. Improved internal audit capabilities offer customers the opportunity to connect auditing with enterprise controls – a crucial first step in integrating compliance within an overall risk management strategy.

Additionally, RSA has launched an updated RSA Archer Community and Exchange platform providing members with expanded tools and resources to facilitate collaboration and help drive innovation for the RSA Archer GRC Platform. With nearly 9,000 members, it is one of the largest vendor-sponsored communities of GRC professionals.

Enhanced RSA Archer Platform:

The RSA Archer Platform is engineered to help enterprises easily manage risks, demonstrate compliance, automate business processes, and gain visibility into corporate risk and security controls across IT, finance, operations and legal domains. Enhancements have been added which are designed to provide improved usability and additional scalability and functionality for customers including:

· Flexible packaging capabilities which are engineered to allow users to bundle, move and deploy solutions much faster, significantly shortening the migration process while facilitating quicker solution releases.

· Advanced reporting with introduction of additional statistical functions.

· Expanded international capabilities designed to enable bi-directional languages, including Arabic and Hebrew.

· Enhanced usability and user interface to improve user productivity, and to streamline administration.

· Improved index and tagging capabilities to help speed search on native information as well as data feeds.

The new platform will be featured for the over 600 registered attendees expected at the June 5 RSA Archer GRC Summit 2012 in Chicago, IL.

New Product Enhancements Complementing the improved Archer platform is the availability of new eGRC product developments that include updates to core solutions and the addition of several value-add solutions including:

· Risk Management: In collaboration with RiskBusiness, an international risk advisory firm, RSA Archer customers can quickly identify pertinent risk taxonomy and key risk indicators (KRIs) that can be integrated into their RSA Archer eGRC framework. Additional updates include the introduction of risk performance management, risk transfer, multi-layer risk roll-up, tolerance to risk and a consolidated view of risk.

· Audit Management: To meet the changing mandates and expectations for internal audits, RSA Archer now includes a more efficient and transparent internal audit process, a common platform to help manage audit planning, prioritization, staffing, procedures and reporting and the linking of audit planning and results to enterprise risks and controls.

· Compliance Management: Solution improvements include better control of layouts and relationships, historical compliance data capture and quarterly SOX 302 certifications.

· PCI Compliance: Performs SAQ assessments and creates compliance report for PCI 2.0 requirements.

· Regulatory Change Management: Monitors changes in regulations and assesses the impact on customer’s organization.

New RSA Archer Community and Exchange:

RSA recently introduced a new RSA Archer Community and Exchange Platform that integrates into the 200,000 member EMC Community Network (ECN). The integration offers RSA Archer customers extended access to the expertise of EMC’s comprehensive technical community network as well as several tools that enable collaboration and idea exchanges between GRC community members, RSA and EMC. Today the Archer Community and Exchange boasts nearly 9,000 clients, partners and product experts who share eGRC best practices, have access to over 200 prepackaged GRC applications, integrations and content. The community also helps drive the RSA Archer product roadmap through a robust GRC online idea exchange. More information on the RSA Archer Community and Exchange can be found at: https://community.emc.com/community/connect/grc_ecosystem

RSA Executive Quote:

“Our customer community is extremely active in helping us determine the future product roadmap for RSA Archer,” said Manoj Nair, Vice President of Products at RSA. The latest RSA Archer offerings put many insights derived from the RSA Archer Community into action to develop new and enhanced products that address our customers’ evolving needs. We place a high value on customer-driven innovation and today’s news is a direct reflection of that effort. ”

Availability:

The new RSA Archer GRC Platform v5.2, RSA Archer GRC Solutions and RSA Archer Community and Exchange are all currently available to Archer customers.

Additional Resources:

Get more information on the RSA Archer eGRC platform

Learn more about the RSA Archer GRC Summit 2012

Learn more about Trusted IT from EMC

Connect with RSA via Twitter, Facebook, YouTube, LinkedIn and the RSA Speaking of Security Blog and Podcast.

About RSA

RSA, The Security Division of EMC, is the premier provider of security, risk and compliance management solutions for business acceleration. RSA helps the world's leading organizations succeed by solving their most complex and sensitive security challenges. These challenges include managing organizational risk, safeguarding mobile access and collaboration, proving compliance, and securing virtual and cloud environments.

Combining business-critical controls in identity assurance, encryption & key management, SIEM, Data Loss Prevention and Fraud Protection with industry leading eGRC capabilities and robust consulting services, RSA brings visibility and trust to millions of user identities, the transactions that they perform and the data that is generated. For more information, please visit www.EMC.com/RSA.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
How to Better Secure Your Microsoft 365 Environment
Kelly Sheridan, Staff Editor, Dark Reading,  1/25/2021
Attackers Leave Stolen Credentials Searchable on Google
Kelly Sheridan, Staff Editor, Dark Reading,  1/21/2021
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Write a Caption, Win an Amazon Gift Card! Click Here
Latest Comment: This comment is waiting for review by our moderators.
Current Issue
2020: The Year in Security
Download this Tech Digest for a look at the biggest security stories that - so far - have shaped a very strange and stressful year.
Flash Poll
Assessing Cybersecurity Risk in Today's Enterprises
Assessing Cybersecurity Risk in Today's Enterprises
COVID-19 has created a new IT paradigm in the enterprise -- and a new level of cybersecurity risk. This report offers a look at how enterprises are assessing and managing cyber-risk under the new normal.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-4682
PUBLISHED: 2021-01-28
IBM MQ 7.5, 8.0, 9.0, 9.1, 9.2 LTS, and 9.2 CD could allow a remote attacker to execute arbitrary code on the system, caused by an unsafe deserialization of trusted data. An attacker could exploit this vulnerability to execute arbitrary code on the system. IBM X-Force ID: 186509.
CVE-2020-4888
PUBLISHED: 2021-01-28
IBM QRadar SIEM 7.4.0 to 7.4.2 Patch 1 and 7.3.0 to 7.3.3 Patch 7 could allow a remote attacker to execute arbitrary commands on the system, caused by insecure deserialization of user-supplied content by the Java deserialization function. By sending a malicious serialized Java object, an attacker co...
CVE-2020-13569
PUBLISHED: 2021-01-28
A cross-site request forgery vulnerability exists in the GACL functionality of OpenEMR 5.0.2 and development version 6.0.0 (commit babec93f600ff1394f91ccd512bcad85832eb6ce). A specially crafted HTTP request can lead to the execution of arbitrary requests in the context of the victim. An attacker can...
CVE-2021-20620
PUBLISHED: 2021-01-28
Cross-site scripting vulnerability in Aterm WF800HP firmware Ver1.0.9 and earlier allows remote attackers to inject an arbitrary script via unspecified vectors.
CVE-2021-20621
PUBLISHED: 2021-01-28
Cross-site request forgery (CSRF) vulnerability in Aterm WG2600HP firmware Ver1.0.2 and earlier, and Aterm WG2600HP2 firmware Ver1.0.2 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.