Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking and Finance Review

Global Banking and Finance Review - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Profile
    • Privacy & Cookie Policy
    • Terms of Use
    • Contact Us
    • Advertising
    • Submit Post
    • Latest News
    • Research Reports
    • Press Release
    • Awards▾
      • About the Awards
      • Awards TimeTable
      • Submit Nominations
      • Testimonials
      • Media Room
      • Award Winners
      • FAQ
    • Magazines▾
      • Global Banking & Finance Review Magazine Issue 79
      • Global Banking & Finance Review Magazine Issue 78
      • Global Banking & Finance Review Magazine Issue 77
      • Global Banking & Finance Review Magazine Issue 76
      • Global Banking & Finance Review Magazine Issue 75
      • Global Banking & Finance Review Magazine Issue 73
      • Global Banking & Finance Review Magazine Issue 71
      • Global Banking & Finance Review Magazine Issue 70
      • Global Banking & Finance Review Magazine Issue 69
      • Global Banking & Finance Review Magazine Issue 66
    Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

    Global Banking & Finance Review® is a leading financial portal and online magazine offering News, Analysis, Opinion, Reviews, Interviews & Videos from the world of Banking, Finance, Business, Trading, Technology, Investing, Brokerage, Foreign Exchange, Tax & Legal, Islamic Finance, Asset & Wealth Management.
    Copyright © 2010-2026 GBAF Publications Ltd - All Rights Reserved. | Sitemap | Tags | Developed By eCorpIT

    Editorial & Advertiser disclosure

    Global Banking and Finance Review is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    Home > Top Stories > RSA EXTENDS BUSINESS-DRIVEN SECURITY™ PORTFOLIO TO HELP ADDRESS GDPR, RISK AND COMPLIANCE CHALLENGES
    Top Stories

    RSA EXTENDS BUSINESS-DRIVEN SECURITY™ PORTFOLIO TO HELP ADDRESS GDPR, RISK AND COMPLIANCE CHALLENGES

    Published by Gbaf News

    Posted on October 18, 2017

    12 min read

    Last updated: January 21, 2026

    Image of Kim Leadbeater addressing the media about proposed changes to the UK's assisted dying law, emphasizing the removal of High Court judge sign-off to enhance the legislative process.
    Lawmaker Kim Leadbeater discusses UK's assisted dying law changes - Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    RSA, a global cybersecurity leader delivering Business-Driven Security™ solutions, unveiled new products to help address many of the challenges related to compliance with data protection regulations like the European Union’s General Data Protection Regulation (GDPR).

    New RSA Archer offerings around Data Governance and Privacy Program Management can be paired with RSA NetWitness® to help speed breach response, and RSA SecurID® to deliver identity and data access assurance to further continuous compliance capabilities.

    GDPR is forcing companies around the world to revisit and revise how they manage and protect data in today’s interconnected cyber landscape. A recent PwC survey found over half of U.S. multinationals say GDPR is their top data-protection priority.

    DATA PRIVACY IS A BUSINESS RISK

    “We used to live in a world where executives ran the business, IT ran the infrastructure, security set the perimeter, and compliance made the rules, but regulations like GDPR are breaking down those old walls,” said Rohit Ghai, President, RSA. “GDPR translates cyber risk to a bottom-line business issue, which completely changes how businesses view their customers’ data.”

    RSA offers a combination of products and services across these domains, including two new use cases in the market leading RSA® Archer® Suite:

    • The RSA Archer Data Governance use case is designed to assist organizations in better documenting data governance requirements to improve support for data-centric regulations, such as HIPAA, GLBA and GDPR.
    • The RSA Archer Privacy Program Managementuse case is designed to enable organizations to holistically manage privacy programs and align processes with regulations, including privacy assessments and regulatory case tracking.

    Ultimately, GDPR is not just a Governance, Risk and Compliance (GRC) issue. GDPR spans the full enterprise and forces companies to adopt a healthier privacy and security risk posture in four critical areas: Risk Assessment, Breach Readiness, Data Governance, and Compliance Management.

    RISK ASSESMENT: UNDERSTANDING YOUR CYBER AND BUSINESS RISK

    GDPR Article 32 outlines elements of a security risk assessment process to ensure the appropriate design and implementation of controls. An effective risk assessment process helps accelerate the identification of the linkage between risks and internal controls, potentially reduce the GDPR compliance gaps and improve risk mitigation strategies, while also giving companies a game plan for improving their cyber posture.

    The RSA Archer Suite is designed to empower organizations to manage multiple dimensions of risk with solutions built on industry standards and best practices on one configurable, integrated software platform. Other use cases that can help support critical GDPR related processes include:

    • RSA Archer Security Incident Management helps enable processes to address the flood of security alerts and implement a managed process to escalate, investigate and resolve security incidents.
    • RSA Archer Security Operations and Breach Management helps extend the security incident process by adding workflow for data breaches and management of the overall security operations team.
    • RSA Archer Issues Management helps organizations manage issues generated from risk and control assessments and audits.
    • RSA Archer IT Risk Management helps accelerate the identification of IT risks related to GDPR compliance and improves an organization’s risk mitigation strategies.
    • RSA Archer IT & Security Policy Program Management provides the framework to help organizations establish a scalable and flexible environment to document and manage an organization’s policies and procedures to help comply with the GRPR.
    • RSA Archer IT Controls Assurance provides a framework and taxonomy to assist organizations by systematically documenting the GDPR control universe, enabling organizations to assess and report on the performance of controls at business hierarchy and business process levels.
    • RSA Archer Third Party Catalog assists in documenting third party relationships, engagements and associated contracts to identify help track external parties related to GDPR.

    BREACH RESPONSE: RESPONDING REQUIRES VISIBILITY

    Article 33 of the GDPR regulation outlines specific requirements for notification of a personal data breach to the supervisory authority, which makes having a full understanding of the details of a data breach paramount. The goal of any security team is to prevent these kinds of breaches, but breaches can still occur. As a result, many data protection requirements focus on breach response and reporting.

    Additionally, GDPR requires notification to regulators, generally within 72 hours of becoming aware of an actual breach. Released earlier this summer, the newest edition of RSA NetWitness® Suite is designed to scan your entire infrastructure for indications of an attack, and uses behavioral analysis and machine learning to help better understand the scope and nature of a breach with improved visibility into the attack sequence, enabling faster notification.

    DATA GOVERNANCE MEANS IDENTITY MANAGEMENT

    Another critical element of GDPR compliance is controlling who has access to personal data. Organizations must protect personal data in a number of different ways, and must be able to demonstrate accountability in keeping accurate records of processing activities, including the categories of personal data processed, the purposes of processing, transfers to third countries outside of the European Economic Area, and the relevant technical and organizational security measures.

    The RSA SecurID® Suite,including RSA SecurID® Access and RSA® Identity Governance and Lifecycle, is designed to enable organizations of all size and maturity to minimize identity risk and deliver convenient and secure access to their modern workforce. By leveraging risk analytics and context-based awareness, RSA SecurID Suite helps ensure the right individuals have the right access, from anywhere and any device. These products can play a critical role in addressing the fundamental need for identity and access assurance.

    PROGRAM MANAGEMENT: COMPLIANCE IS NOT A DESTINATION

    Compliance program management establishes a scalable and flexible environment to document and manage an organization’s relevant privacy policy and/or GDPR related procedures, standards and controls. However, being GDPR compliant, just like having a “secure” enterprise can change from moment to moment and is a moving target for businesses.

    The RSA Risk and Cyber Security Practiceoffers a range of strategic services designed to help customers develop a business-driven security posture, build an advanced security operations center and revitalize their GRC program. To complement a robust product offering, RSA also provides implementation and post-implementation support so customers can maximize their existing investment in RSA products.

    • The RSA Risk Management Practice delivers strategic consulting services to help optimize an organization’s GRC program. It also offers staff augmentation and support services to help plan, implement, deploy and upgrade RSA products and services, including the RSA Archer Suite.
    • The RSA Advanced Cyber Defense Practice helps security organizations develop the processes, procedures, workflows and automation that enable prompt, decisive response to data breaches and other cyber incidents.
    • The RSA Incident Response Practice helps organizations respond to security breaches as they prepare to meet new 72-hour notification requirements of GDPR.
    • The RSA Identity Assurance Practice helps organizations plan and implement comprehensive programs for managing access to GDPR-relevant data. With knowledge of who has access to what, organizations can make more informed access decisions, better identify risky activity, and meet compliance mandates.

    With an organized, managed process to escalate issues identified during control testing, organizations get visibility into risks and can address the risks in a timely manner. Organizations will see quicker reaction to emerging issues, create a more proactive and resilient environment, and reduce the churn in driving accountability towards GDPR compliance.

    RSA, a global cybersecurity leader delivering Business-Driven Security™ solutions, unveiled new products to help address many of the challenges related to compliance with data protection regulations like the European Union’s General Data Protection Regulation (GDPR).

    New RSA Archer offerings around Data Governance and Privacy Program Management can be paired with RSA NetWitness® to help speed breach response, and RSA SecurID® to deliver identity and data access assurance to further continuous compliance capabilities.

    GDPR is forcing companies around the world to revisit and revise how they manage and protect data in today’s interconnected cyber landscape. A recent PwC survey found over half of U.S. multinationals say GDPR is their top data-protection priority.

    DATA PRIVACY IS A BUSINESS RISK

    “We used to live in a world where executives ran the business, IT ran the infrastructure, security set the perimeter, and compliance made the rules, but regulations like GDPR are breaking down those old walls,” said Rohit Ghai, President, RSA. “GDPR translates cyber risk to a bottom-line business issue, which completely changes how businesses view their customers’ data.”

    RSA offers a combination of products and services across these domains, including two new use cases in the market leading RSA® Archer® Suite:

    • The RSA Archer Data Governance use case is designed to assist organizations in better documenting data governance requirements to improve support for data-centric regulations, such as HIPAA, GLBA and GDPR.
    • The RSA Archer Privacy Program Managementuse case is designed to enable organizations to holistically manage privacy programs and align processes with regulations, including privacy assessments and regulatory case tracking.

    Ultimately, GDPR is not just a Governance, Risk and Compliance (GRC) issue. GDPR spans the full enterprise and forces companies to adopt a healthier privacy and security risk posture in four critical areas: Risk Assessment, Breach Readiness, Data Governance, and Compliance Management.

    RISK ASSESMENT: UNDERSTANDING YOUR CYBER AND BUSINESS RISK

    GDPR Article 32 outlines elements of a security risk assessment process to ensure the appropriate design and implementation of controls. An effective risk assessment process helps accelerate the identification of the linkage between risks and internal controls, potentially reduce the GDPR compliance gaps and improve risk mitigation strategies, while also giving companies a game plan for improving their cyber posture.

    The RSA Archer Suite is designed to empower organizations to manage multiple dimensions of risk with solutions built on industry standards and best practices on one configurable, integrated software platform. Other use cases that can help support critical GDPR related processes include:

    • RSA Archer Security Incident Management helps enable processes to address the flood of security alerts and implement a managed process to escalate, investigate and resolve security incidents.
    • RSA Archer Security Operations and Breach Management helps extend the security incident process by adding workflow for data breaches and management of the overall security operations team.
    • RSA Archer Issues Management helps organizations manage issues generated from risk and control assessments and audits.
    • RSA Archer IT Risk Management helps accelerate the identification of IT risks related to GDPR compliance and improves an organization’s risk mitigation strategies.
    • RSA Archer IT & Security Policy Program Management provides the framework to help organizations establish a scalable and flexible environment to document and manage an organization’s policies and procedures to help comply with the GRPR.
    • RSA Archer IT Controls Assurance provides a framework and taxonomy to assist organizations by systematically documenting the GDPR control universe, enabling organizations to assess and report on the performance of controls at business hierarchy and business process levels.
    • RSA Archer Third Party Catalog assists in documenting third party relationships, engagements and associated contracts to identify help track external parties related to GDPR.

    BREACH RESPONSE: RESPONDING REQUIRES VISIBILITY

    Article 33 of the GDPR regulation outlines specific requirements for notification of a personal data breach to the supervisory authority, which makes having a full understanding of the details of a data breach paramount. The goal of any security team is to prevent these kinds of breaches, but breaches can still occur. As a result, many data protection requirements focus on breach response and reporting.

    Additionally, GDPR requires notification to regulators, generally within 72 hours of becoming aware of an actual breach. Released earlier this summer, the newest edition of RSA NetWitness® Suite is designed to scan your entire infrastructure for indications of an attack, and uses behavioral analysis and machine learning to help better understand the scope and nature of a breach with improved visibility into the attack sequence, enabling faster notification.

    DATA GOVERNANCE MEANS IDENTITY MANAGEMENT

    Another critical element of GDPR compliance is controlling who has access to personal data. Organizations must protect personal data in a number of different ways, and must be able to demonstrate accountability in keeping accurate records of processing activities, including the categories of personal data processed, the purposes of processing, transfers to third countries outside of the European Economic Area, and the relevant technical and organizational security measures.

    The RSA SecurID® Suite,including RSA SecurID® Access and RSA® Identity Governance and Lifecycle, is designed to enable organizations of all size and maturity to minimize identity risk and deliver convenient and secure access to their modern workforce. By leveraging risk analytics and context-based awareness, RSA SecurID Suite helps ensure the right individuals have the right access, from anywhere and any device. These products can play a critical role in addressing the fundamental need for identity and access assurance.

    PROGRAM MANAGEMENT: COMPLIANCE IS NOT A DESTINATION

    Compliance program management establishes a scalable and flexible environment to document and manage an organization’s relevant privacy policy and/or GDPR related procedures, standards and controls. However, being GDPR compliant, just like having a “secure” enterprise can change from moment to moment and is a moving target for businesses.

    The RSA Risk and Cyber Security Practiceoffers a range of strategic services designed to help customers develop a business-driven security posture, build an advanced security operations center and revitalize their GRC program. To complement a robust product offering, RSA also provides implementation and post-implementation support so customers can maximize their existing investment in RSA products.

    • The RSA Risk Management Practice delivers strategic consulting services to help optimize an organization’s GRC program. It also offers staff augmentation and support services to help plan, implement, deploy and upgrade RSA products and services, including the RSA Archer Suite.
    • The RSA Advanced Cyber Defense Practice helps security organizations develop the processes, procedures, workflows and automation that enable prompt, decisive response to data breaches and other cyber incidents.
    • The RSA Incident Response Practice helps organizations respond to security breaches as they prepare to meet new 72-hour notification requirements of GDPR.
    • The RSA Identity Assurance Practice helps organizations plan and implement comprehensive programs for managing access to GDPR-relevant data. With knowledge of who has access to what, organizations can make more informed access decisions, better identify risky activity, and meet compliance mandates.

    With an organized, managed process to escalate issues identified during control testing, organizations get visibility into risks and can address the risks in a timely manner. Organizations will see quicker reaction to emerging issues, create a more proactive and resilient environment, and reduce the churn in driving accountability towards GDPR compliance.

    More from Top Stories

    Explore more articles in the Top Stories category

    Image for Lessons From the Ring and the Deal Table: How Boxing Shapes Steven Nigro’s Approach to Banking and Life
    Lessons From the Ring and the Deal Table: How Boxing Shapes Steven Nigro’s Approach to Banking and Life
    Image for Joe Kiani in 2025: Capital, Conviction, and a Focused Return to Innovation
    Joe Kiani in 2025: Capital, Conviction, and a Focused Return to Innovation
    Image for Marco Robinson – CLOSE THE DEAL AND SUDDENLY GROW RICH
    Marco Robinson – CLOSE THE DEAL AND SUDDENLY GROW RICH
    Image for Digital Tracing: Turning a regulatory obligation into a commercial advantage
    Digital Tracing: Turning a regulatory obligation into a commercial advantage
    Image for Exploring the Role of Blockchain and the Bitcoin Price Today in Education
    Exploring the Role of Blockchain and the Bitcoin Price Today in Education
    Image for Inside the World’s First Collection Industry Conglomerate: PCA Global’s Platform Strategy
    Inside the World’s First Collection Industry Conglomerate: PCA Global’s Platform Strategy
    Image for Chase Buchanan Private Wealth Management Highlights Key Autumn 2025 Budget Takeaways for Expats
    Chase Buchanan Private Wealth Management Highlights Key Autumn 2025 Budget Takeaways for Expats
    Image for PayLaju Strengthens Its Position as Malaysia’s Trusted Interest-Free Sharia-Compliant Loan Provider
    PayLaju Strengthens Its Position as Malaysia’s Trusted Interest-Free Sharia-Compliant Loan Provider
    Image for A Notable Update for Employee Health Benefits:
    A Notable Update for Employee Health Benefits:
    Image for Creating Equity Between Walls: How Mohak Chauhan is Using Engineering, Finance, and Community Vision to Reengineer Affordable Housing
    Creating Equity Between Walls: How Mohak Chauhan is Using Engineering, Finance, and Community Vision to Reengineer Affordable Housing
    Image for Upcoming Book on Real Estate Investing: Harvard Grace Capital Founder Stewart Heath’s Puts Lessons in Print
    Upcoming Book on Real Estate Investing: Harvard Grace Capital Founder Stewart Heath’s Puts Lessons in Print
    Image for ELECTIVA MARKS A LANDMARK FIRST YEAR WITH MAJOR SENIOR APPOINTMENTS AND EXPANSION MILESTONES
    ELECTIVA MARKS A LANDMARK FIRST YEAR WITH MAJOR SENIOR APPOINTMENTS AND EXPANSION MILESTONES
    View All Top Stories Posts
    Previous Top Stories PostACI WORLDWIDE STEPS UP TO MARKET’S GROWING OPEN API DEMANDS
    Next Top Stories PostBENTHAM IMF LAUNCHES BANKRUPTCY FUNDING PLATFORM WITH ADDITION OF INVESTMENT MANAGER; HIRES CORPORATE COUNSEL IN NEW YORK