We performed a comparison between MetricStream and RSA Archer based on real PeerSpot user reviews.
Find out in this report how the two GRC solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The interface is mobile-friendly and it is getting a good response from our customers."
"Key features are usability and ease of configuration. It allows us to have all the information in a single place and provide real-time indicators and information for our executives."
"The last project was for an investment group that was using Excel. Shifting their records from one position to another took approximately 15 minutes. In Archer, we created a workflow for them to leverage it, and they could send the single record with one click to one person within seconds. The whole process went from 15 minutes to two minutes to get the approval for the records. The main purpose of Archer is to just make it easy."
"The most valuable feature is the enterprise module, which provides the capability of having all of the information stored and linked with everything else."
"The most valuable part of the product is the ease-of-use and the opportunity to create custom security applications easily."
"Integration is another great aspect of RSA Archer. From the beginning, integration has been a central focus for RSA, and Archer has always integrated well with most tools on the market today."
"The solution has improved my organization by having everything combined to a single platform."
"Solution is scalable."
"RSA Archer is a good tool and I have found performing the application, ISMS, and TPRM assessments beneficial."
"The product is very flexible."
"I would like to see out-of-the-box integration with more security, it would be helpful."
"We would like to have more dashboards and reports, such as geographical and trend reports in the next version. Also, an improvement in the mobile version would be helpful."
"In a future release, there should be an option to upload the main data."
"Some areas are not truly automated but are only scheduled."
"Recently, we made a suggestion for cross references, like for one application to another. There were limitations there, so we're hoping that will be included in the next upgrade."
"The bullet chart is the best graph for my purposes, and it should be available for inclusion in the dashboards."
"I would like to see real-time data, from vulnerabilities, and threats."
"There are certain restrictions on API integrations, and it is not simple or straightforward."
"Solution could use more inbuilt applications."
"Archer could be improved by having more customization. I'm not sure if the backend processes have API calls and those kinds of seamless integrations, but from the front, some of the solutions are very out-of-the-box. It's not customizable, so that could be a little problematic since you have to use their features. In terms of the backend structure, I'm not too sure because I'm not a developer—I was an end user and product owner of Archer—and I don't quite know the backend and developmental features. But since it's an out-of-the-box solution, sometimes customization was challenging and support was a little problematic because we had to reach out to them all the time."
MetricStream is ranked 12th in GRC while RSA Archer is ranked 1st in GRC with 38 reviews. MetricStream is rated 8.6, while RSA Archer is rated 8.0. The top reviewer of MetricStream writes "Reasonably priced, stable, with out of the box deployment, and has good local support". On the other hand, the top reviewer of RSA Archer writes "A rich application with good workflow, but search feature needs improvement". MetricStream is most compared with IBM OpenPages and OneTrust GRC, whereas RSA Archer is most compared with OneTrust GRC, IBM OpenPages, Microsoft Purview Communication Compliance, Workiva Wdesk and Snow Governance & Risk. See our MetricStream vs. RSA Archer report.
See our list of best GRC vendors, best IT Governance vendors, and best IT Vendor Risk Management vendors.
We monitor all GRC reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.