Client Profiles
Archer empowers Fortune 1000 companies and government agencies to manage risk and demonstrate compliance.
See how Archer clients are setting the bar in their industries in protecting customer data and complying with stringent regulations through tailored solutions built on the Archer SmartSuite Framework.
Financial Services
Archer’s client list includes 36 of the top 40 financial services institutions in the United States, a group that comprises 13 major investment banks and 7 leading insurance companies. The following is one of many success stories from an Archer client in the financial services industry:
Profile:
Full-service global financial institution with more than 200,000 employees and $100 billion in annual revenue
Authoritative Sources:
Sarbanes-Oxley Act, PCI, GLBA
Challenges:
The company required continuous policy updates to provide an enhanced, sustainable model for regulatory compliance. Due to a lack of focus on core processes, policy management initiatives were completed in silos and not communicated across departments.
Solution:
The company utilized the Archer SmartSuite Framework and the Policy, Threat and Incident Management solutions to deploy a comprehensive policy program. Using Archer, the company has realized the following benefits:
- A sustainable process for identifying regulatory items, associated risks and overall assessments
- Centralized policy, incident, threat and business continuity data
- Engagement of key individuals across the organization
- Increased policy accountability
Telecommunications
Eight of the 10 largest telecommunications firms in the United States rely on Archer to manage security, risk and compliance challenges. The following success story represents just one of many from our telecommunications clients:
Profile:
Expansive, publicly traded phone company with over 50 million customers, 80,000 employees and more than $40 billion in annual revenue
Authoritative Sources:
GLBA, PCI
Challenges:
The company required the ability to generate, track and report on a large number of annual risk assessments. They also required a flexible solution that was simple to use but robust enough to capture sufficient information to enable enhanced reporting.
Solution:
The company implemented the Archer SmartSuite Framework, the Archer Policy and Asset Management solutions and custom integration to save thousands of hours in evaluating and managing security risks. Using Archer, the company has realized the following benefits:
- An automated process that creates and populates risk assessments and deficiencies
- Risk assessment scoring based on various weightings
- A broad range of reporting capabilities tied to high-priority assets
Government Agencies
Several United States government agencies utilize Archer solutions and the Archer SmartSuite Framework to manage and distribute security information. The following is a success story from one of our government clients:
Profile:
Large government agency overseeing a variety of national activities with an annual budget of more than $20 billion
Authoritative Sources:
NIST, FISMA
Challenges:
The agency needed the ability to track and assess weaknesses on their cyber security. They also needed to aggregate large amounts of security information and distribute action plans across the entire organization.
Solution:
The agency deployed the Archer SmartSuite Framework and the Archer Incident Management solution to capture system and program weakness data and to document all steps toward achieving compliance with their security policies. Using Archer, the agency has realized the following benefits:
- Site-specific security metrics following agency-wide formatting and content guidelines
- Consolidated portal for reviewing and monitoring the status of all cyber security issues
- Dynamic metrics providing real-time status of agency compliance levels
Healthcare and Pharmaceuticals
Archer clients include leading healthcare and pharmaceutical companies within the United States. The following is one of many success stories from an Archer client in the pharmaceutical industry:
Profile:
Major pharmaceutical manufacturing company with more than 60,000 employees and $22 billion in annual revenue
Authoritative Sources:
HIPAA, FDA 21 CFR Part 11
Challenges:
The healthcare organization needed to clearly demonstrate compliance with both HIPAA and FDA 21 CFR Part 11, as well as to streamline the IT audit process.
Solution:
The company implemented the Archer SmartSuite Framework and the Archer Policy solution to track policies and control standards and cross-reference them to policy exceptions. Using Archer, the company has realized the following benefits:
- Visibility into policy content, relevant industry regulations and control frameworks
- An efficient mechanism to track policy exception requests
- Dashboard views into a variety of policy-related information
Technology and Energy
Archer serves global leaders in the technology and energy industries. The following success story represents just one of many from our energy clients:
Profile:
Global oil and gas refining company with more than 100,000 employees and $200 billion in annual revenue
Authoritative Sources:
Sarbanes-Oxley Act, ISO/IEC 17799:2005
Challenges:
The company required a fraud investigation system that would support a growing need for improved incident reporting and system usability. An internal audit exposed gaps in the functional capabilities of the company’s existing system, and they determined this internal system would be too difficult and costly to enhance and maintain.
Solution:
The company deployed the Archer Incident Management solution, which they integrated with existing software, to rapidly implement, test and deploy a solution that fulfilled their objectives. Using Archer, the company has realized the following benefits:
- Close collaboration between Archer and the company to create a system that addressed their individual business needs
- Workflow to streamline the company’s current fraud investigation process
- A consolidated repository and process for managing all incidents for the entire organization
- Access control so information can be viewed only by authorized personnel
