pdf Download (1010 KB)

This document introduces a unique approach from HPE SecureData that combines data encryption and masking technology in one, which can vastly simplify data privacy, while mitigating data leakage at a fraction of the cost of prior approaches. One fundamental technology is HPE Format-Preserving Encryption (FPE), which for the first time, allows encryption ‘in place’ in databases and applications, without significant IT impact. Another technology is tokenization, which replaces data with random tokens, and which can also preserve data formats. These technologies are integrated with masking techniques on the HPE SecureData Platform, allowing projects that once lasted months or years to complete in days to weeks.

pdf Download (150 KB)

The MetricStream Vendor Risk Management (VRM) App enables you to manage, monitor, and mitigate vendor risks efficiently and effectively. By integrating global vendors onto one cohesive framework, the app gives you complete visibility into vendor risks. The app also streamlines and standardizes vendor management processes, right from vendor on-boarding and risk profiling to ongoing vendor monitoring and oversight.

pdf Download (363 KB)

The number, complexity, and velocity of risks are increasing, and the speed at which these risks emerge means your organization has much less time to effectively respond. In addition, organizations are managing many different types of risks – like cyber, third party supplier, competitive and new products/service risks – within different business silos and assessing them using separate methodologies and measurements. Unfortunately, the current ad hoc risk management approach is overloading your resources and does not provide a consistent, real-time risk picture for your executive team.

pdf Download (2.09 MB)

In October 2015, RSA completed a global survey of almost 400 organizations to gather insight into current trends and perceptions regarding Risk Management. The survey utilized RSA’s proprietary Risk Intelligence Index to ask questions around key areas of risk and how organizations are addressing the changing risk landscape. The Risk Intelligence Index is based on the RSA Archer Maturity Model that measures organizations’ GRC program components across five stages of maturity.

pdf Download (250 KB)

The value of mature GRC capabilities can be summed up through another acronym—ABC: Aware, Bespoke, and Confident. And while these are not the only attributes of effective GRC, together these three offer the opportunity for greater success that most organizations have failed to grasp, at least up until now.

pdf Download (241 KB)

According to Deloitte Advisory Cyber Risk Services “the fundamental things that organizations undertake in order to drive performance and execute on their business strategies happen to also be the things that actually create cyber risk. This includes globalization, mergers and acquisitions, extension of third-party networks and relationships, outsourcing, adoption of new technologies, movement to the cloud, or mobility. And they are not going to stop doing these things any time soon. Cyber risk is an issue that exists at the intersection of business risk, regulation, and technology. Executive decision-makers should understand the nature and magnitude of those risks, consider them against the benefits a strategic shift would deliver and then make more informed decisions.”

Download

When business operators use repeatable processes and unied software to manage risk and compliance, the benets are huge. Every part of the business becomes more agile, resilient, risk intelligent and condent. This illustration shows how to improve business processes, gain risk intelligence, and contribute to planning for performance.

pdf Taking Command of Your GRC Journey.pdf (374 KB)

Organizations must implement a cohesive risk management program to protect against loss while remaining agile to meet strategic objectives. RSA® Archer® can transform your compliance program and enable your organization to proactively manage risk by providing improved visibility, enabling better decisions to achieve business objectives with more predictable results.

pdf Download (79 KB)

Information technology risk teams know well that the scope of IT risks can be very broad – ranging from technical security risk, to IT operations risk, through to operational risk and enterprise risk. IT risk teams typically have deep skills in risk identification and analysis of information technology components, and many are also quite skilled in making recommendations on risk treatment options.

pdf Download (278 KB)

As with any major purchase, demonstrating the return on investment is key to getting the ultimate buyer to support the investment. Automating your risk and compliance activities can positively affect your company’s bottom line. You just need to prove it. Here are some insights to help you do just that.

pdf Download (6.32 MB)

GDPR is the biggest shake-up in European data protection legislation for 30 years. Organizations have less than two years to ensure that their data protection processes are compliant. Most organizations will struggle to meet the May 25, 2018 deadline.

default Download

This solution brief provides an overview of RSA Archer Operational Risk Management, including use cases for Top-Down Risk Assessment, Loss Event Management, Risk Catalog, Bottom-Up Risk Assessment, Operational Risk Management, and Key Indicator Management.

pdf Download (228 KB)

In today’s global and increasingly digital business world, a broad spectrum of economic, political, social, legal, technology and regulatory changes are continually taking us to a new level of strategic and tactical complexity and creating commensurate pressures on business performance. We continue to see exponential growth of requirements (often conflicting and overlapping) that organizations must satisfy, and these become even greater as we expand global operations.