RSA Archer: Third Party Governance

Manage your third party relationships and engagements while reducing risks and monitoring performance.

RSA® Archer® Third Party Governance automates and streamlines oversight of vendor relationships. The solution facilitates key activities necessary to fulfill regulatory obligations and best practices across the entire third party management lifecycle as part of a governance, risk and compliance (GRC) program. You can capture prospective relationships, engage affected stakeholders, and assess contract risk, financial wherewithal, and inherent and residual risks across multiple risk categories. This enables you to enforce risk-based selection, establish performance metrics, and monitor and manage the program throughout the third party lifecycle.

RSA logoRSA Archer Third Party Governance provides several use cases to meet your specific business needs as you mature your third party risk and performance management program, including the following options:

  • Third Party Catalog: Document all third party relationships engagements, and associated contracts, as well as the business units and named individuals in the organization that are responsible for each third party relationship.
  • Third Party Engagement: Fully document relevant information about the products and services you receive from third parties, including associating products and service engagements to the business processes they support, documenting fourth parties, proof of insurance, and master service agreements.
  • Third Party Risk Management: Assess the governance and controls that third parties have in place around the engagements they are delivering to your organization.
    Third Party Governance: Monitor each third party’s performance. Metrics can be established around each engagement within four categories: Quality, Innovation, Performance, and Relationship.

Screenshot: RSA Archer Third Party Governance

Iceberg: Making a Difference
Our Archer Accelerator program can get you started on initial use cases with minimal configuration, typically in 60-90 days, helping organizations large and small to implement an effective GRC solution.

Read more:


To request a demo, or for more information, please fill out the form below or email info@icebergnetworks.com