We performed a comparison between ARIS Risk and Compliance Manager and RSA Archer based on real PeerSpot user reviews.
Find out what your peers are saying about RSA, AuditBoard, Trend Micro and others in GRC."The most valuable feature is the risk testing, where you can attach your processes to the risk, and automatically generate all of the tests."
"Even non-technical people can be masters of the product."
"The solution has improved my organization by having everything combined to a single platform."
"Its user interface is pretty neat, and there is flexibility in generating the data. You can customize reports at any level. You can directly get reports in Tableau format. If you want to generate statistical data, you can create reports with graphs. There is an adequate amount of flexibility for changing the format, the type of graphs, etc."
"The last project was for an investment group that was using Excel. Shifting their records from one position to another took approximately 15 minutes. In Archer, we created a workflow for them to leverage it, and they could send the single record with one click to one person within seconds. The whole process went from 15 minutes to two minutes to get the approval for the records. The main purpose of Archer is to just make it easy."
"I like how Archer requires very little programming ability. A person with minimum coding experience can configure the necessary fields in Archer. It's more of a drag-and-drop solution."
"I have found all the features to be valuable, including those involving reporting, the dashboard, notifications, email modules, the database and data input."
"RSA Archer has reduced the time and effort required for meetings."
"Archer has simplified our security audits. It's made it easier to raise and trigger questionnaires to customers."
"I would like to see the modeling less strict so that connectors can be more flexible."
"The product is expensive."
"Some areas are not truly automated but are only scheduled."
"In a future release, there should be an option to upload the main data."
"The financial area of RSA Archer has room for improvement."
"It would be nice if RSA Archer featured more customization. When customers are updating, they should be notified whether certain updates are optional. The install screen should not proceed to the next page unless we make some selections about which updates we want to install."
"There is no inbuilt alert in Archer to let us know that a data feed has failed or did not run for different reasons. So, we don't even get to know that a feed has not run until somebody reports it to us. This has been a problem all the time. Data feeds have always been a big headache for us because there is no feature to let us know if a feed has not run or has failed. If Archer had a feature to send us an email notification when a feed has failed, it would've been very helpful. This is the reason why our users are slowly moving away to another platform. Some of the modules that I have been managing are being moved to ServiceNow. Next year, a lot of our modules will be moved from RSA Archer to ServiceNow, and the data feed issue has been one of the main reasons."
"The solution as a whole could be simplified."
"The bullet chart is the best graph for my purposes, and it should be available for inclusion in the dashboards."
Earn 20 points
ARIS Risk and Compliance Manager is ranked 30th in GRC while RSA Archer is ranked 1st in GRC with 38 reviews. ARIS Risk and Compliance Manager is rated 8.0, while RSA Archer is rated 8.0. The top reviewer of ARIS Risk and Compliance Manager writes "Risk testing feature enables you to attach your processes to the risk, and automatically generate all of the tests". On the other hand, the top reviewer of RSA Archer writes "A rich application with good workflow, but search feature needs improvement". ARIS Risk and Compliance Manager is most compared with , whereas RSA Archer is most compared with OneTrust GRC, IBM OpenPages, MetricStream, Microsoft Purview Communication Compliance and Workiva Wdesk.
See our list of best GRC vendors.
We monitor all GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.