Archer

Archer is a provider of integrated risk management solutions designed to help organizations address and manage risk in the digital age. The company’s mission is to enable organizations to transform risk into a strategic advantage. Archer aims to achieve this by providing a platform that unites stakeholders, integrates technologies, and offers a comprehensive view of an organization’s risk landscape.

Archer’s primary goal is to empower its clients to make well-informed decisions to protect their operations and reputation. Archer is recognized as a leader in the Governance, Risk, and Compliance (GRC) and Integrated Risk Management (IRM) markets. The company has a reputation for providing flexible and configurable solutions that cater to a wide range of risk and compliance challenges across various industries.

Offerings, Capabilities, and Integrations

Archer provides integrated risk management (IRM) solutions that enable organizations to manage multiple dimensions of risk on a single platform. Its offerings are designed to provide a comprehensive and holistic view of risk, breaking down silos between different risk functions. This integrated approach allows for more informed decision-making and a more resilient business. Archer’s capabilities extend across various risk domains, including IT and security risk, enterprise and operational risk, audit and compliance, and environmental, social, and governance (ESG) risk. The platform’s ability to consolidate risk data from across an organization and provide a unified picture is a key competitive advantage. This fosters a culture of risk awareness and accountability throughout the enterprise. Archer’s reputation is built on its ability to deliver a configurable and integrated platform that supports a wide range of risk management needs.

Products and Services

Archer’s offerings are centered around the Archer Platform, its flagship integrated risk management platform. This platform serves as the foundation for a suite of solutions designed to address specific risk and compliance challenges. Key products and services include:

• Archer IT & Security Risk Management: This solution helps organizations manage the complexities of digital risk, including cybersecurity threats, data privacy, and IT compliance.
• Archer Enterprise & Operational Risk Management: This offering enables businesses to identify, assess, and monitor risks across the entire enterprise, from strategic risks to day-to-day operational risks.
• Archer Audit Management: This product provides a systematic approach to internal audit, helping organizations streamline audit planning, execution, and reporting.
• Archer Business Resiliency: This solution helps organizations prepare for and respond to disruptive events by providing tools for business continuity and disaster recovery planning.
• Archer Third Party Governance: This offering assists in managing the risks associated with third-party relationships, including vendors, suppliers, and partners.
• Archer Regulatory & Corporate Compliance Management: This solution helps organizations stay on top of changing regulations and ensure compliance with corporate policies.
• Archer ESG Management: This newer offering is designed to help organizations manage environmental, social, and governance risks and opportunities.

In addition to its software solutions, Archer also offers a range of services to support its clients, including professional services for implementation and configuration, as well as managed services for ongoing platform support and administration.

Target Customers

Archer’s target customers are typically mid-to-large enterprises across a variety of industries that face complex regulatory and risk environments. These organizations require a robust and scalable platform to manage their risk and compliance programs effectively. Key market segments include:

• Financial Services: Banks, insurance companies, and other financial institutions benefit from Archer’s solutions to manage regulatory compliance, operational risk, and cybersecurity threats.
• Healthcare: Healthcare organizations use Archer to manage patient data privacy (HIPAA compliance), cybersecurity risks, and other regulatory requirements.
• Energy and Utilities: Companies in this sector leverage Archer for managing operational risks, environmental compliance, and critical infrastructure protection.
• Government: Government agencies utilize Archer’s platform to manage a wide range of risks, from cybersecurity to compliance with federal regulations.
• Technology: Technology companies benefit from Archer’s solutions for managing IT risk, data privacy, and third-party risk.

These target customers benefit from Archer’s integrated approach to risk management, which provides them with a single source of truth for risk and compliance data. This enables them to make better-informed decisions, improve operational efficiency, and demonstrate compliance to regulators and stakeholders.

Cloud Integrations and Marketplaces

Archer offers a Software as a Service (SaaS) solution and maintains a presence on major cloud marketplaces, providing various integrations to connect its platform with other cloud-based services.

• Amazon Web Services (AWS): Archer provides its SaaS offering on the AWS Marketplace. This allows customers to procure and deploy the Archer platform on AWS infrastructure. Archer also offers an integration with AWS IAM Access Analyzer, which helps users import findings related to resource access policies directly into the Archer platform for monitoring and analysis.
• Microsoft Azure: The Microsoft Azure Marketplace lists the RSA Archer Suite, which can be integrated with Microsoft Entra ID. This integration enables users to manage access and implement single sign-on for the RSA Archer Suite using their organizational accounts hosted in Active Directory. Additionally, Archer offers an integration with Microsoft 365 OneDrive and SharePoint, allowing users to link and interact with files stored in those services from within an Archer record.
• Google Cloud: While a direct marketplace listing for Archer on the Google Cloud Marketplace was not identified, Archer does provide an integration to collect its Integrated Risk Management (IRM) logs with Google Security Operations. This is facilitated through a Bindplane agent to ingest syslog data for analysis.

Key People

• Chief Executive Officer: Bill Diaz
• Chief Product & Marketing Officer: Dan DeRosa
• Chief Commercial Officer: Jeff Longoria
• Chief Financial Officer: Bill Razzino
• Chief Transformation Officer: Rishi Roy
• General Counsel: Matt Sherrill
• Global Head of HR, People & Culture: Sondra Cooper-Ortega
• Global Head of Engineering – Emerging Solutions: Kayvan Alikhani
• Global Head of Engineering – Core: James Griffith
• Global Head of Professional Services & Delivery: Mike Ostendorf

Key Facts

• Headquarters Location: Overland Park, Kansas
• Number of Employees: 800 – 1,000
• Annual Revenue: $220 million – $260 million
• Parent Company: Cinven
• Subsidiary Companies: None
• Publicly Listed: No

Analyst Recognition

Archer is recognized by several leading analyst groups for its role in the governance, risk, and compliance (GRC) and IT risk management markets.

• Gartner positions Archer as a Leader in its Magic Quadrants for both IT Risk Management and IT Vendor Risk Management. Archer has been named a Leader in the Magic Quadrant for IT Vendor Risk Management Tools for six consecutive years. The company has also been consistently named a Leader in the Magic Quadrant for IT Risk Management.
• Forrester includes Archer as one of the most significant providers in its Forrester Wave™ report on Third-Party Risk Management Platforms.
• IDC places Archer in the Major Players category in its IDC MarketScape for Worldwide Governance, Risk, and Compliance Software. Archer is also included in the IDC MarketScape for Worldwide Environmental, Social, and Governance (ESG) Reporting and Compliance Management Applications.

There is no publicly available information to suggest that Archer is recognized by the Everest Group in its PEAK Matrix® assessments.