RiskLens RSA Archer Integration: A Close-up Look at Adding Quantitative Risk Analysis to GRC

July 10, 2019  Taylor Maze

Call me cliché, but, for me, onboardings always have a touch of excitement. Although from a functionality standpoint they are primarily a platform configuration, at the heart of the engagement they are much more.

They are a new beginning for the risk program at the organization, a whole new world of risk management that enables risk-based decision making.

(This is the point in the blog where you should be humming “A Whole New World” from Aladdin.) 

By becoming a RiskLens customer and participating in an onboarding, your organization becomes one of the many forces in the growing FAIR movement. As a self-proclaimed FAIR nerd, that is a pretty cool thing to be a part of.

The most recent onboarding I was engaged in was much more exciting than any that preceded--it was my first experience with an RSA Archer integration with the RiskLens Cyber Risk Quantification (CRQ) tool. An experience enabled by the ongoing partnership between RiskLens and RSA.

The engagement involved both me and a consultant from the RSA Professional Services team and was a testament to the possibilities that are available as a result of the partnership. It allowed for us both to gain a greater understanding of each other’s systems and processes and how they fit into the world of quantitative risk management while simultaneously educating the clients on the CRQ platform and its capabilities.

How the RiskLens-RSA Archer integration works

The integration allows RSA Archer users to request a quantitative risk analysis of an item on their risk register in real time.



The request is then routed to the CRQ tool where an analyst is able to begin the scoping and data gathering process.

After the results have been generated, the analyst can then fulfill the request and the results will be available in the RSA Archer tool as well.

And RiskLens RSA Archer users have access to the full range of reports that the RiskLens CRQ generates, such as this loss exceedance curve:

Due in no small part to the eagerness and flexibility of the client, we were able to quickly create a successful integration between the RSA Archer Platform and RiskLens CRQ.

Interested in a RiskLens integration? Contact us.

The RiskLens CRQ platform runs on the FAIR model for quantitative cyber risk analysis. Membership in the FAIR Institute, the non-profit organization for FAIR model users, now numbers close to 5,000.