menu
Select a section from the dropdown

About

  • RSA® Business-Driven Security™ solutions uniquely link business context with security incidents to help organizations manage risk and protect what matters most. RSA solutions are designed to effectively detect and respond to advanced attacks; manage user identities and access; and reduce business risk, fraud and cybercrime. RSA protects millions of users worldwide and works with more than 90 percent of the Fortune 500.

    Why We Partner with CCH®

    The Unified Compliance Framework (accessible through the Common Controls Hub SaaS portal) harmonizes terms and controls against the backdrop of a master Hierarchical list. This allows organizations to focus on a strategic plan to comply with multiple regulatory bodies using the same team, tools, and funding.

    A fundamental starting point is to identify rules, regulations, and industry best practices which must be included in an organization’s compliance portfolio. Parsing the citations within those authoritative sources that contain control objectives and mapping those objectives to organizational controls are the next steps. With those components in place, an organization has a solid foundation to drive audit, risk assessment, asset prioritization, and a host of other activities to support compliance operations.

    How We Produce Outcomes

    • Leverage the UCF in conjunction with the RSA Archer Policy, Compliance, or Risk Management solutions to map your internal policies, standards, and controls to UCF controls.
    • Map internal risk assessments to centralized UCF Authority Documents and citation references. Assert compliance across multiple Authority Documents simultaneously.
    • Clarify conflicts created by multiple overlapping demands
    • Drill down for explanations and sources for each Common Control
    • Map your IT processes to UCF categories, corporate policies, standards, and external regulations

    Who and Industries We Serve

    Worldwide

    Banking and Financial services, Insurance, Retail, Consumer Product Goods, Healthcare, Health Insurance, Pharmaceuticals and Life Sciences, Medical Devices, Food and Beverage, Energy and Utilities, Oil and Gas, Manufacturing, Automotive, Mining, Government

  • RSA Archer GRC

    Address the most critical domains of business risk and evolve your GRC program with a full suite of multi-disciplinary risk management solutions and a single configurable, integrated software platform. RSA Archer can help you mature your organization's GRC program with solutions built on industry standards and best practices.

    The UCF offering within RSA Archer consists of five on-demand applications (Authority Documents, Citations, Controls, Roles, and Audit). These applications linked together through unique references, allowing organizations to dive deep from a variety of directions; either starting with controls and moving upward or drilling down from top level authoritative sources. The application structures and content are both included. In addition, the UCF controls have been mapped to Archer Control Standards to bridge a link between UCF content and the rest of the Archer library.

    Underpinning the UCF application suite is the RSA Archer GRC Platform. Measuring risk and asserting compliance requires input from many areas of the business to correctly prioritize efforts. Information such as the relationship of business processes to assets and devices provides contact and dimension to threat and risk analysis. Identifying, measuring, and reducing that risk through integrated controls is a major component to achieving compliance efficiency.
    Learn More

    Problems or Challenges Product Solves

    The UCF offering within RSA Archer consists of five on-demand applications (Authority Documents, Citations, Controls, Roles, and Audit). These applications linked together through unique references, allowing organizations to dive deep from a variety of directions; either starting with controls and moving upward or drilling down from top level authoritative sources. The application structures and content are both included. In addition, the UCF controls have been mapped to Archer Control Standards to bridge a link between UCF content and the rest of the Archer library.

    Underpinning the UCF application suite is the RSA Archer GRC Platform. Measuring risk and asserting compliance requires input from many areas of the business to correctly prioritize efforts. Information such as the relationship of business processes to assets and devices provides contact and dimension to threat and risk analysis. Identifying, measuring, and reducing that risk through integrated controls is a major component to achieving compliance efficiency.

    Key Features

    Application Builder

    Tailor RSA Archer GRC solutions to your unique methodologies and build on-demand applications through point-and-click configuration. Non-technical users can automate processes, streamline workflow, control user access, tailor the user interface and report in real-time.

    Advanced Business Workflow

    Define and automate business processes for streamlining the management of content, tasks, statuses and approvals. Enable application authors to visually describe business processes as a flowchart, allowing business processes to automatically assign tasks based on specific conditions like assigning ownership, setting priorities or escalating issues.

    System Integration

    Consolidate governance, risk and compliance information of any type. Seamlessly integrate data systems without requiring additional software. Automate movement of data into and out of the platform to support data analysis, process management and reporting.

  • Contact Us

    First Name:

    Last Name:

    Email address:

    Tell us what you’re interested in, select all that apply:

    Send us your questions:


    This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.